re: How to Process Passwords as a Software Developer VIEW POST

TOP OF THREAD FULL DISCUSSION
re: What about simple variations of the username, like myusername with password myusername46? I know for a fact that attackers are looking for this com...
 

Great question! That's an extremely good idea, although I haven't seen this done either. I'm sure someone's already implemented Levenshtein distance calculators in various programming languages.

Something definitely to look into. It's no worse than checking if the password is known, as long as the required Levenshtein distance is balanced, but not sure what that would be.

code of conduct - report abuse