password requirements
The password requirements are truly insane for the average user. I shouldn't need a password so secure that it'd take years to *****, I need a password I can remember. This is a streaming site.
If a streamer wants a super secure password, they can make that themselves, but imposing insane guidelines on people who just want to follow a few people is super annoying.
-
Rairden1 commented
The requirement is way more than my 2 banks (8 chars, all lower case).
Twitch might respond, "Well just use a password manager!" to which I would respond:
"Twitch users view streams from tablets, TVs, cell phones which don't have password managers. And if you used a public PC to login to twitch you are screwed."
Fix your "Reset password" page (using Chrome browser). When we type in an 11 symbol password (all lower-case, alpha-numeric, special characters) and it says "Strong" in GREEN TEXT, what does that tell the UX or UI? That indicates to the user experience the password entered is acceptable. Fix your UX. I just spent 30 minutes trying 11, 13, 15, 17 and 20 character (upper, lower case, digits, special symbols) all of which say "Strong" in GREEN TEXT yet it won't accept it when clicking "Set Password".
When making a new account about a year ago I noticed if you simply include a "space symbol" somewhere in the middle you only need a tiny length like 8-12. Yet 25 symbols of gibberish wouldn't be accepted that didn't include a space symbol.
And after writing the above paragraph I tried adding a single space somewhere in the middle of my 20 length password and it finally worked. At least now my pass is SOMEWHAT memorable (riiiight).
-
tumo08 commented
The requirement is way more than my bank pls stop
-
boostedaf_monkey commented
they will accept "lmaolmaolol" as a password but not my 15 character password with uppercase, lowercase and numbers. this site is stupid as ****
-
pourshun commented
I just had to make the most insane password this $*** is ridiculous. I even smashed my hand on the keyboard and randomly put special characters and it still said the password was weak. Like what kind of people are you guys trying to keep out lord almighty. Never gonna remember this password and gonna have to reset it everytime I login to a new f****** device. This is TTV not the **** FBI, yall needa seriously chill with this. My bank is easier to get into than my **** TTV account.
-
basicbosch2 commented
What I just had to do to create a new password is idiotic. This is what happens when you let idiots run things. Someone at the watercooler probably said what can we do to add to security. Instead of using common logic and understand that the vast majority or your audiences have an IQ under 110. You decided to make new passwords harder than they need to be. Just my opinion but the ******** that came up with the idea to make passwords so hard should be fired on the spot, and dragged out of the building by his ear and thrown into the street.
If twitch is so worried about security why don't they just require users sign in through an email sent to their account every time they want to enter their account. Seriously, you as a company trust that it is the EU who will be getting that little link to change their passwords, why don't you think an entry link would be so hard?
KISS Keep it simple stupid.
-
Dracolusus commented
@Twitch, you a streaming service, not a Swiss bank. Seriously, I used a random 15-18 character password with upper and lowercase, non-consecutive letters, numbers, special characters, and it still didn't take it! Who is your business/systems analyst, they suck ass.
That is the password it doesn't accept. Are you trying to drive viewers away? Tried some strong password generators, upto 256 characters, doesn't take anyMSJ23!$HF"(£J12!"£(FNDS"1866#$!&^536"":}45}3167
*That password is too easy to guess. HAHAHAHAHAHAAE2q3cw7?_3DQHERAwa2V4Mj^Jk&!Nx&xMy$3FnpZM*Wj$F?Q&bS@DG3L?g2JM?*^KMGz2BnjCkVc7eM*YUMgM@uv5bvpTFudE3KQ-!TV_Lr5M+NmBc4*zuHSS#LVEhE#
Still nope.
-
petro1head commented
This is bloody stupid and in fact discriminates against people with a learning dissability
-
bosourd commented
This annoyed the hell out of me, I've forgot my password and changed it for 3 times now.
What the hell they're thinking? 2FA is enough. If they're worried so much about Partners being hacked, at least create options for Partners to torture themselves remembering their password, but for casual people, this is too much, they want everyone to have *&%)*@*@$! in their password, so damn stupid.
Most viewers don't even bother to put a profile picture on their account, who gives a sh*t.
-
allita101 commented
You need to pull the password requirements WAY back. I am not going to try to remember or type a ******** 20 character triple encrypted cypher every time I log into this plague on under 15 year old garbage website that literally ONLY streams videos. What in the **** are they going to steal?
-
athena5800 commented
Ive tried multiple times making a password for myself that’s not too easy to forget but they are being super controlling and not allowing people to create accounts because of this... the 2 step verification should be enough protection. They need to fix this issue.. passwords are not this insane!
-
necropotions commented
I have never come across a site with such unrealistic, arbitrary, and unreasonable rules for creating a password for your account. this is a tiny thing. but very frustrating.
-
ricekekw commented
Yep completely agree with this, trying to change my password but the requirements are ridiculous.
-
Atg1234 commented
The password requirements are way too much. To your point, I also have a less complex password for my bank account than I do for twitch. Twitch should not decide how complex my password needs to be, that should be me.
Let people make their own decisions. I don't need an overly complex password that I am going to have to look up now everytime I try to log in.
-
RaRaRabbits commented
I posted a similar comment in the Password Reset section, and there is an additional one in the Signup section.
Please lower the complexity of the password requirements. Stop trying to micromanage people's ability to log in.
-
RaRaRabbits commented
I just wrote a suggestion in the "Password Reset" section myself, not seeing this one here in sign up.
I have easier passwords with much more important things in my life than Twitch. This level of complexity is insane. Let the users make their passwords. Don't try to micromanage a person's ability to log in. Not to mention the fail safes of security codes and email verifications that pop up too.
-
RaRaRabbits commented
My suggestion? Chill out on your password requirements.
Currently, the requirements are ridiculously high and very finnicky. I typed a random password of "edited!" as a test of desperation after attempting for 15 minutes trying to decide, and it says the password is weak. I have an easier password with my bank account than I do with twitch.
I typed a bunch of random passwords to test, and found that this just seemed sporadic and overly complicated. Here are another 2 that I typed in comedically --- "edited!" and "edited!" are both considered weak.
I WORK IN TECH. This is ridiculous, and I wouldn't even want to log in to twitch if it wasn't for the fact I typed this up and I need to log in to complain about it.
-
Maldroth commented
Your updated password requirements are obtuse and the strong password page does not give clear indications on what an acceptable password would be other than just accepting what random password a browser or password manager offers and then changing it again when you change devices or can't carry that password with you. This doesn't make an account more secure as then you need to write that down then you have a physical copy to compromise your account if you are in a shared living space.
-
SierraSonic commented
My password was fine, you forced me to change it, my account was never compromised simply because of MFA. As others have said, take these requirements and shove them. Let us be as secure as we want, but that means expanding MFA, you know, proper investment into the platform.
-
Foxs49er commented
THIS!!! 100% I had a 1600+ character expletive filled comment ready to send. Calmness got the better of me. Fix your password bullsh1t. I can tell you my current password doesn't meet your requirements and I want to make it slightly more difficult but until you let me make it what I WANT I'll just leave it ****** and compromised. :) No reason p1ssing people off when they also have 2FA enabled.
-
SylveonTheYandere commented
Stop making us use random letters and numbers and characters to "protect" our accounts. BE NORMAL AND NOT STUPID. You're just ******* people off and pushing them away from your platform while hackers still get in fine.