This is not an issue for 1P per se, but I thought this forum might be a good place to get some pointers about password strength.
Many banks require you to enter the i(th), j(th) and k(th) letters/digits of your password.
So if the underlying password is, say, 30 symbol random password, is requiring only a subset of the passwords making it easier to brute force?
Or is there some security magic that I'm not aware of that is retaining the unguessability of the underlying?
Or is it the case that most banks would argue that 3 random characters is still large enough to make it hard to attack from a practical/pragmatic perspective?
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided