this post was submitted on 03 Apr 2026

1037 points (98.8% liked)

Comic Strips

23139 readers

3150 users here now

Comic Strips is a community for those who love comic stories.

The rules are simple:

The post can be a single image, an image gallery, or a link to a specific comic hosted on another site (the author's website, for instance).
The comic must be a complete story.
If it is an external link, it must be to a specific story, not to the root of the site.
You may post comics from others or your own.
If you are posting a comic of your own, a maximum of one per week is allowed (I know, your comics are great, but this rule helps avoid spam).
The comic can be in any language, but if it's not in English, OP must include an English translation in the post's 'body' field (note: you don't need to select a specific language when posting a comic).
Politeness.
AI-generated comics aren't allowed.
Limit of two posts per person per day.
Bots aren't allowed.
Banned users will have their posts removed.
Adult content is not allowed. This community aims to be fun for people of all ages.

Web of links

!linuxmemes@lemmy.world: "I use Arch btw"
!memes@lemmy.world: memes (you don't say!)

founded 2 years ago

MODERATORS

lawrence@lemmy.world

1037

Incorrect Password (media.piefed.world)

submitted 3 days ago by negativenull@piefed.world to c/comicstrips@lemmy.world

77 comments fedilink hide all child comments

source

top 50 comments

sorted by: hot top controversial new old

[–] GreenKnight23@lemmy.world 7 points 2 days ago

my bank did this shit to me. I finally tracked down a dev that worked on the software through LinkedIn.

I asked why the fuck does this happen. their response?

When your password expires it will give you a password invalid on login. this is the best way the software can force a password change.

I seriously wanted to hurt the guy, but realized he was just trying to deliver a feature that his boss wouldn't give him the time to fully deliver on.

now, for a moment, just imagine how many other corners were cut when your banking software was written...

[–] osanna@lemmy.vg 4 points 1 day ago

do you even password manager?

[–] prole@lemmy.blahaj.zone 19 points 2 days ago* (last edited 2 days ago) (2 children)

The worst is when I forget what the requirements for the password were, and that all I did was add a special character to the pw I thought it was. So when I get to the "enter new password" part, and it actually tells me that I need a special character, then I enter my current password and get this message

load more comments (2 replies)

[–] ttyybb@lemmy.world 61 points 3 days ago (1 children)

That's to real to be funny.

[–] orca@orcas.enjoying.yachts 21 points 3 days ago (1 children)

2 Real 2 Funnious

[–] saltesc@lemmy.world 14 points 3 days ago (1 children)

I live my life a quarter-smile at a time...

load more comments (1 replies)

[–] ColeSloth@discuss.tchncs.de 52 points 3 days ago (3 children)

Bullshit IT trick. If they suspect a possible security compromise they'll force this out to everyone. It gets you to change your password without them revealing that they may have been compromised and had data stolen.

[–] Teppa@lemmy.world 4 points 2 days ago

Armis did this to me. I use Bitwarden, I know my password was right.

[–] LifeInMultipleChoice@lemmy.world 13 points 3 days ago (2 children)

Companies like Apple say the password has to have a capital lowercase number and 8+ characters. But leave out that your password can't be something you have used in the last year, can't contain your name, birthday, or email address. Those errors will come up separately. In this case it would say you can't reuse your password. It doesn't say your last password because it wasnt your last password. Some people just don't use the password daily/weekly, so they forget 6 times a year and have to keep resetting it.

Also the number of people forget their passcode because they use face/touch id all all the time is higher than you'd expect apparently. I knew someone who used to complain about it when they did support for them. Essentially people plug their device in every night, use it daily and never turn it off so it always accepts face or touch. Then they leave automatic updates on .. and it restarts for an update and they can't get back into their device because face/touch doesn't work on first boot, it is a subsidiary of the passcode and cannot be set up without the passcode.

Then since they forgot their passcode, they have to wipe everything from the phone to bypass it... But of course they don't know their password so they can't sign back into their account and it is then activation locked because that's how they prevent people from using stolen devices.

Then the extreme cases dude was telling me at that point is they changed their phone number at some point, so they can't reset their password without it, it takes days if not a week to recover the account, all the while their phone is a brick

[–] WraithGear@lemmy.world 9 points 3 days ago (5 children)

my favorite is my login for my phone needing me to authenticate i with… the authenticator… on my phone…. which to log into the authenticator…. requires me to verify using the authenticatior…

you call the IT department and i get an AI telling me that all password retrievals are done through the web portal, so it sends the password reset… to my email, accessed by my phone, that needs me to authenticate using the authenticatior…

the real answer it to lie to the AI to talk to a person and ambush them with a password reset and don’t take no for an answer.

i am currently 1 month behind on my required training modules about the importance of network security.

load more comments (5 replies)

load more comments (1 replies)

[–] Honytawk@discuss.tchncs.de 3 points 2 days ago (1 children)

That is not how it works.

They keep a log of the 3 (or more) previously used passwords. If you try to change to any of them, it will give you this error.

So if you changed your password and then forgot. Changing it back to the password before that will tell you not to use previous passwords even if it is not the current password.

[–] ColeSloth@discuss.tchncs.de 2 points 2 days ago (1 children)

Except sometimes I know for certain the "wrong password" it wants me to change is the currently used one.

load more comments (1 replies)

[–] Pika@sh.itjust.works 42 points 3 days ago* (last edited 3 days ago) (2 children)

There's a special category reserved for the devs that design their apps to invalidate passwords, but not give a message saying the password is invalidated and needs to be changed.

In my experiences that is usually the cause. Them invalidating the password sending an email (or sometimes not). cue me trying the old password, failing, changing the password, and getting that message. /tableflip

[–] limelight79@lemmy.world 9 points 2 days ago

The time and attendance software at my old job would do that. It took me a while to figure out that it wasn't me forgetting the password, the password had just expired. Extremely frustrating.

[–] sartalon@lemmy.world 9 points 3 days ago (1 children)

Came here to say this.

Pretty sure most of the time the password is expired or invalidated, as you said, but whoever vibe coded the system was too lazy, too dumb, or too terrified of being blamed for the frustration of changing a password, that they think it is better to put ALL the frustration on the user.

Whatever the reason, I fucking hate them.

[–] Draegur@lemmy.zip 3 points 2 days ago

"I'll just gaslight them into thinking they couldn't remember it"

Fucking assholes.

[–] jeffep@lemmy.world 19 points 3 days ago* (last edited 3 days ago)

At least it's not "Invalid, this password is already taken by user SweetyPie1997"

[–] Wifi0041@fedinsfw.app 30 points 3 days ago (1 children)

Government sites do this to me more frequently than any other site. The worst part is that I use a password manager so I know for certain it's the correct password.

[–] helpImTrappedOnline@lemmy.world 33 points 3 days ago* (last edited 3 days ago) (3 children)

Some sites have a character limit they don't tell you about. They accept the password when you make it, but they also chopped off the last 10 characters.

[–] Lost_My_Mind@lemmy.world 19 points 3 days ago (1 children)

Password is only 8 characters. It's the perfect password!

[–] HuudaHarkiten@piefed.social 16 points 3 days ago* (last edited 3 days ago) (1 children)

I only see ********

edit: boo my hilarious joke from 2005 doesn't work

[–] okwhateverdude@lemmy.world 11 points 3 days ago (2 children)

hahaha, you hunter2ing hunter2.

load more comments (2 replies)

[–] YoiksAndAway@piefed.zip 29 points 3 days ago (2 children)

I've gotten "New password cannot be the same as the four previous passwords". I live too far from a large body of water to watch the sun rise/set over the horizon and ponder my life.

[–] Lost_My_Mind@lemmy.world 19 points 3 days ago (3 children)

Password1

Password2

Password3

Password4

Password5

Password1

Aaaaaaaand repeat.

load more comments (3 replies)

[–] dual_sport_dork@lemmy.world 14 points 3 days ago (1 children)

That one is okay-ish. The one that is going to have me getting in the elevator with my samurai sword to go and have a chat with somebody is "Your password cannot contain any sequence of characters from previous passwords," or "password cannot be your old password backwards."

Sure, just admit to me that you're storing passwords in plain text as carefree as you like.

load more comments (1 replies)

[–] Sam_Bass@lemmy.world 3 points 2 days ago

Seriously.

[–] AzuraTheSpellkissed@lemmy.blahaj.zone 24 points 3 days ago

This happened to me yesterday. Turned out that the site had a password length limit on the reset-password-form, but not on the login page.

[–] Smoogs@lemmy.world 7 points 2 days ago* (last edited 2 days ago) (2 children)

But also ‘passwords don’t even matter anymore. They don’t keep you safe. Get an MFA’ And yet it has to be changed every 3 months with complicated instructions on characters

[–] JennaR8r@lemmy.dbzer0.com 1 points 1 day ago

I like the businesses that ask you for your email address and they send you a code and then you put that code into their box and they do a new one every time like that, so there's never a password required.

[–] GreenKnight23@lemmy.world 2 points 2 days ago (2 children)

my bank blocks the ability to copy and paste passwords into the password change form.

want to have a 128 character alphanumeric password with multiple special characters? you're going yo type it allllll in, twice.

oh, you have @%:;}°¥¢ characters in your password? we only allow !?+-(). now do it again.

hey, we noticed your password has too many repeating characters. repeating characters: 88 now do it again.

hey, your password must start with a letter.

hey, can't be an uppercase letter.

hey, can't end with 0

1000003352

[–] Raptorox@sh.itjust.works 3 points 1 day ago

Might this be useful to you? https://github.com/jswanner/DontF-WithPaste

[–] Pika@sh.itjust.works 3 points 1 day ago* (last edited 1 day ago)

almost as bad as directtv

Was working on my gramps account yesterday... the website auto logs you out when you click a link then they have a limited amount of times you can do email 2fa in a 24h period so after 4 or 5 logout you are locked out of your account for 24h

[–] jaybone@lemmy.zip 15 points 3 days ago (1 children)

Is he watching the sunset, or did he throw his computer in the water?

[–] negativenull@piefed.world 19 points 3 days ago

Yes?

[–] CarbonIceDragon@pawb.social 13 points 3 days ago (3 children)

When that happens I usually just exit the password reset page without entering a new one and then log in again with the old

[–] sefra1@lemmy.zip 17 points 3 days ago

Incorrect Password

load more comments (2 replies)

load more comments