[zulln]

> This pseudo-security measure actually only slows down humans, not bots, because you can still edit the value of the text field using Javascript (and in fact it's easier to do it that way if you know how).

Surely this is to prevent keyloggers, no slowing down bots. With that said it is questionable if it is worth it. People would probably pick less secure password as a result.

[neogodless]

It's also case-insenstive and limited to 8-16 characters, further decreasing the complexity.

[tvb12]

They actually require a capital letter when creating an account. This led to a few moments of me looking for the shift key on the on-screen keyboard before noticing the note next to the password field.