[vunuxodo]

Taken to the extreme is the US Government's TreasuryDirect website, where individuals can buy savings bonds. Instead of allowing you to type your password, they render a "virtual keyboard" that you have to use your mouse to click the keys one by one.

Oh, and that password? Not case sensitive.

[jolux]

> Oh, and that password? Not case sensitive.

What, you expect them to make a case-sensitive version of NTFS just to store your password??

[emodendroket]

NTFS is case-sensitive.

[Agent766]

They made a case-insensitive version of NTFS just to store your password

[bradknowles]

It is case-preserving, but not case-sensitive.

So, it will show you what was entered and make you think it’s case-sensitive, but then when you go to do the comparison, it actually ignores case.

The stupid thing is that MacOS was also case-preserving but not case-sensitive for a long time.

[nathell]

APFS still defaults to case-preserving:

    [nathell@macmini /tmp]$ echo first > A
    [nathell@macmini /tmp]$ echo second > a
    [nathell@macmini /tmp]$ cat A
    second

[emodendroket]

That's how Windows will behave but not actually how the underlying filesystem does.

[jolux]

I think it’s internally case sensitive and provides case insensitive APIs to users, right?

[Barracoon]

Right, win32 is insensitive

[ratcline]

I heard that systems like this were designed when there was a point in time(this may just be erroneous and such a time never actually existed) where keyloggers were more common than RATs, so government websites would often have this requirement due to the higher probability of access from public computers(library, etc), since that was also a point in time when fewer people had their own at home.

[Slump]

Hard to believe it requires a mouse. The government (everyone really but especially the government) generally would need to follow basic ADA guidelines...