Password Paste Prevention: Security Friend or Foe? – IT SECURITY GURU
Every few days on ‘Infosec Twitter’, I come across another example of a site that breaks password manager functionality by disabling the ability to paste into the password field. Generally, customer service representatives for those sites will vaguely explain that this is being done for “security reasons” – despite the fact that current best practices recommend the very password managers that this is disabling. Why are two different communities citing “security reasons” to justify opposite actions?