Include comma in autogen password

Options
AussieRob57
AussieRob57
Community Member
in Lounge

G'day,

Would it be possible to add an option to always include a comma in an autogenerated password?

As most stolen accounts are passed around using CSVs this would really help corrupt such files.

Cheers,
Rob

1Password Version: 8.10.18
Extension Version: 2.17.0
OS Version: macOS 14.1
Browser: Chrome

Comments

  • Dave_1P
    Dave_1P
    edited November 2023
    Options

    Hello @AussieRob57! 👋

    Welcome to the community! The current symbols used by the password generator in the apps were selected because they're the most compatible with websites across the internet. The symbol range was wider at one point, and did include commas, but was deliberately reduced since we were receiving a lot of reports where 1Password would generate a password for a website only to have that website reject it because it refused to accept certain symbols.

    This initial work eventually led to the creation of the Smart Password Generator which generates password based on the exact requirements of the website that you're on: A smart(er) password generator | 1Password

    As most stolen accounts are passed around using CSVs this would really help corrupt such files.

    I'm not sure that it would. Although CSV does stand for Comma-separated values, you can choose symbols other than a comma as your delimiter if you wish.

    If a CSV file does stick with using a comma as the delimiter, then you can just enclose a password containing a comma with a double-quote to preserve the structure of the CSV file: "passw,ord". I don't see anyone creating a CSV file with a list of passwords who wouldn't take a moment to build that rule into their process. It's what 1Password's own CSV export does when it comes across a password that includes a comma.

    It's not likely that adding a comma to your passwords will yield any additional security. The better move to protect against breaches is to:

    1. Make sure that every website uses a unique password generated by 1Password.
    2. Turn on two-factor authentication where possible: Use 1Password as an authenticator for sites with two-factor authentication
    3. Switch to using passkeys which are resistant to phishing and breaches: Save and Sign In with Passkeys Using 1Password on the Web and iOS

    -Dave