Update password policy guidelines (!32972) · Merge requests · GitLab.com / www-gitlab-com · GitLab

This MR updates the password policy guidelines per the discussion in https://gitlab.com/gitlab-com/gl-security/compliance/compliance/issues/1105 to better align with NIST 800-63B and team member feedback

It specifically:

Removes the special character requirement from the GitLab team member section
Specifically states special characters aren't required or even recommended
States our policy is based on, in part, NIST 800-63B
Adds resources for folks to learn more about what makes a secure password

Edited Oct 30, 2019 by Luka Trbojevic