Sunday, September 23, 2012

Hotmail limits passwords length

According to threatpost, Microsoft web mail service - Hotmail - has put a limitation on users maximum password length. It is observed that the passwords longer than 16 characters are not accepted. The amazing point is that there is a claim that the first 16 characters of old long passwords is accepted as the new password! This may lead to the conclusion that Hotmail passwords has not been more than 16 chars from the first day! Or one may think that Hotmail stores the passwords in plain text instead of storing password hashes ...