How is it acceptable for a major banking company like PayPal to limit their password length to 20 characters...

How is it acceptable for a major banking company like PayPal to limit their password length to 20 characters? Do they want their users passwords to get hacked. This is bullshit.

So has any password been cracked because its lenght was of 20 characters?

2fa

use it.

They're not a banking company, you idiot.

certain countries classify it as a bank

???

You're missing the point completely

>tfw turkroach
>tfw paypal is closed 2 months ago here

Is this the pizza meme girl?

For the same reason a 4 digit PIN is good enough for an ATM card.

inaba from kokoro connect
it's not. normies like it because easy to use.

If someone wants your password bad enough theyll get it, no use losing sleep :)

my paypal password is correcthorsebatterystaple

>How is it acceptable for anyone to limit their password in any way at all?
FTFY

You do realize that length =/= security right?

>gets automatically locked after 3 failed attempts
You can't "hack" an atm card.

Length of randomly generated password does decrease the time taken to crack the password so it does make it more secure

So it decreases the length of the IP ban?

Reread what I posted. You seem to have trouble understanding.

Length doesn't matter, user, it's how you use it that matters.

Make a secure password out of the following characters: 1 2 3

Throw password attempts at Paypal. See what happens.

Uh yeah, you will get timed out. The issue lies when I hacker manages to download the password hash database and then attempts to crack the hashes. Users with short shitty passwords will have their password cracked first whereas it will take a significantly longer time to crack passwords with longer more "random" characters.

>mfw my tdcanadatrust pw is only allowed 8 characters

>when I hacker manages to download the password hash database

Upon which they force a password change.

>Upon which they force a password change.
Yeah hopefully? It could be too late though. My point still remains however, the longer the password length to longer amount of time it takes to crack.

Meaninglessly more secure is meaningless. That's why we call it, "meaningless"

Who else other than retards like you call it meaningless? I can assure anyone that knows remotely anything about security would all it meaningless.

Uncrackable passwords == terrorism. Gobmint must be able to crack passwords to keep terrorism at bay.

really unrelated here, but it involves paypal.

this guy offered to sell me something over the internet, but only via paypal invoice. how safe am I, the buyer? what to do without getting scammed?

Passwords seem broken.
What's a better solution?

paypal chargebacks are easy if he scams you, if you send it as a gift or something and he has no proof then you have an easy win chargeback, if it's goods and services just call your bank and say the paypal charge was a fraud and they'll reverse it

source: used to scam idiots in tf2

so, the seller sends an invoice. next I pay, then, he'll ship out the item to me when he gets the payment? is that how the process works?

and if he never sends me the item by mail, i'll be safe? and get my money back?

Yes essentially paypal is generally pretty safe for buyers

You're an idiot. Nobody cares what you think.