[OT] Password regex change on mybills.co.il
Amos Shapira
amos.shapira at gmail.com
Sun Feb 28 07:21:35 IST 2016
One condition I see from this regex which wasn't mentioned yet is that
there should be at least two *consecutive* letters in the password.
All in all, as Steve said - this is an idiotic way to enforce such complex
requirements (and I consider myself a regex enthusiast), and they should
fix their own shit. Just send them a password you tried so they can see for
yourself that it doesn't work.
On 28 Feb 2016 6:47 a.m., "Valery Reznic" <valery_reznic at yahoo.com> wrote:
> Hi, All.
>
> It's not actually Linux-related, but more regular-expression question.
> Nevertheless ...
>
> Recently I was unable to login into site mybills.co.il
>
> Attempt to reset password also failed due to regular expression test
> failed.
>
> Mybills claims that password should be 8-10 characters long and should
> include at least two digits and Latin letters.
>
> Whatever I tried as password - I was not able to pass their regex test.
>
> After a bit of digging
> I found following in the https://www.mybills.co.il/js/Validations.js
>
>
> //var passREGEX =
> /^(?=.{8,10}$)(?=(.*[0-9]){2,})(?=(.*[a-zA-Z]){2,})(?=(.*[~!@#$%^&*()+-_=])).*/;
> var passREGEX =
> /^(?=.*[a-z])(?=.*[A-Z])(?=.*[0-9])(?=.*[~#%&=\$\-\!\?\^@])(?=.{8,})/;
>
> I tried first (commented out) regex in
> the regex101.com and indeed password with 2 digits and 2 Latin letters
> matches
>
> I tried the second (active) one- no matches.
>
> Any idea what password should looks like to match this regex?
>
> I tried to contact mybills's support - no luck here :(
>
> Valery
>
>
>
>
>
> _______________________________________________
> Linux-il mailing list
> Linux-il at cs.huji.ac.il
> http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.cs.huji.ac.il/pipermail/linux-il/attachments/20160228/565827f2/attachment.html>
More information about the Linux-il
mailing list