I put an end-of-the-universe-grade password in (quadrillions of years to break) which hits all 4 criteria and I cant get it to pass. :O

Probably a special character it doesn't allow

I also get triggered by these password policies, and the fuckwit security "experts" who suggest them. I still dont know why management in particular revere these guys and implicitly trusts anything they say, and also makes "security" issues (half the time which are bullshit - like this password policy) take precedence over other issues that are actually costing the company money.

Hm… my usual kind of password (something along the lines of 'SomeSillyPassphrase!42') should pass these requirements. If not, the validation is clearly wrong, and you should curse at the programmers, and/or consider using a competitor's website.

@unsignedint I geht triggered if there is a maxlength and special characters are not allowed