Long, NOT complicated, password requirements
Can you please stop asking me to write password with ridiculously complicate rules to try and make them more secure?! What's more is you force people to use something they have never used before as a password every time it gets re-set. What you have to remember is that REAL PEOPLE with REAL WORKING BRAINS need to be able to actually REMEMBER their password. Rather than spending 10-15 minutes every time they need to login to an application/ server re-setting their password because they can't remember it, how about you just make them use a long, random collection of words, with NO requirement for symbols, numbers or capitalisation at any point. Because you know what happens when you do ask for that? People need to be able to remember them so they put in obvious substitutions like A = 4, I = 1 and O = 0. Honestly I don't have a bloody clue why I'm explaining this as you ALL know it already but refuse to do anything about it. I'm not a coder, I'm a professional working in construction, and I can assure you I am long fed up of these ridiculous rules and of having a long string of websites and programmes that I dread having to login to because I know it's going to be a massive faff every time I do. And to steal what if someone does break in? My application profile data or various other inconsequential bits of information about 'me'? Please, please, please sort it out. It's beyond ridiculous.