Replies

Oh no... That is not good. Their system is comparing passwords with others on other usernames. This should not be happening at all. Only the username same/same should trigger a refusal no matter what you or anyone else is using as a password, even if they happen to be the same. It should not be comparing passwords against each other. Only usernames against each other.

Or more likely that when the password does not meet the standard set by TruthSocial, the interrupt jumps to the wrong error code. It's a bug, not unusual for new code. But I am surprised this did not shake out in testing.

41 posted on 05/19/2022 6:47:11 PM PDT by JoSixChip (2020: The year of unreported truths; 2021: My main take away from this year? Trust no one.)

I agree with you guys, that is probably the case. The message should have been “Password too weak” not “used” if that was the case. But like you say Jo, that should have been worked out because registration is THE most important feature that just absolutely has to be right.

But strange that it would not take a password, and then after trying a different one, it then did take the original on the second try.

But I guess it is par for the course considering how this has been handled so far. From what I am reading those guys need to address this issue right away. :)

48 posted on 05/19/2022 7:03:08 PM PDT by Openurmind (The ultimate test of a moral society is the kind of world it leaves to its children. ~ D. Bonhoeffer)