Auth0 Home Blog Docs

Fair passwords are Good passwords?

password

#1

There doesn’t seem to be a meaningful difference between “Fair” level passwords and “Good” Level passwords:

  • Fair: Min. 8 chars with one from each of lower/upper/number
  • Good: Min. 8 chars with one from 3 or the 4: lower/upper/number/special

Which would seem to indicate that all “Fair” passwords will pass as “Good” passwords as well. E.g., the “password” aBcd3fgh works at either level. Am I missing something here?


#2

The password policies such as “Good” and “Fair” are meant to be general advice, rather than a scale. Thanks for pointing out this confusion - we are looking into how we can improve the UX for this.


#3