Allen Holub
I really would like to understand how anyone could imagine that disabling paste in a password field increases security. It's nuts. Same for people who write web pages that are hostile to password managers. What are the thinking?! 🙄
---
RT @jpagroenen
@allenholub There is also a circle of Hell reserved for devs that create the crappy account deactivation / password update sections. And especially for the dev that disables ctrl-v in a pas…
https://twitter.com/jpagroenen/status/1613445664452804610
Johan Groenen on Twitter

“@allenholub There is also a circle of Hell reserved for devs that create the crappy account deactivation / password update sections. And especially for the dev that disables ctrl-v in a password input!”

Twitter
Jan 12, 2023 at 5:25pmWeb
Show threadMarco 🇳🇱 🇪🇺Jan 12, 2023
@allenholub next to the place in hell for smartTV app developers that still implement entering username/pwd via a virtual keyboard on-screen. With a remote.
Show threadStephen BelovarichJan 12, 2023
@allenholub being on disability with broken wrists the disability insurance website wouldn’t allow Face ID or auto fill for passwords, so I had to painfully type the password for awhile just to get a payment from disability.
Show threadAllen HolubJan 12, 2023
@iplayitofflegit Disability-related forms that prevent the person with the disability from entering data. It sounds like something Kafka would write about. 😱
Show threadGary HudsonJan 12, 2023
@allenholub could not agree more
Show threadJarrettJan 13, 2023
@allenholub I’m writing a web app now. Our API provider recommends that we “disable copy/paste of bank routing and account fields” in their Best Practices guide. Not going to happen.
Show threadAllen HolubJan 13, 2023
@jarrett Glad to hear it 😄. Their guide seems not as Best as they imagine!