Hacker News new | ask | show | jobs
by illusiveman 1028 days ago
I wondered once about this, but it kind of make sense from the point of view of usability.

Unlike any webservice, you usually have very few attempts to make a successful login before getting locked out, so even if it's four digits, the odds of a successful brute force attack are very low
1 comments
plorntus 1028 days ago
I suppose so, I just find it funny really that my bank has less password requirements than most (if not all) online services I use
link