Hi,
I forgot my password and used the ‘forgot password’ link on the website. Got the email and followed the link. I tried to change my password to: MyTempPassword_waze , but I got a message stating that my password should be at least 6 alphanumeric characters. It obviously IS long enough.
Please fix.
Alphanumeric does not include _
Yeah, guess I should have picked it up. But you have to agree… excluding symbols as valid password characters is pretty draconian.
In Germany we say “Jain” what means yes an no is valid at same.
Yes, you’re right if you say, using non-alphanumeric symbols is extremely increasing the security of your account.
No, it’s a technical restriction to use only alphanumeric. Non alphanumeric symbols could cause database errors and/or cause security problems to the database by string-insertions. So you are very well advised to not allow other characters than alphanumeric.
You as user can increase your password-security by using a mix of upper- and lowercase letters and numbers. So you’ve 26 upper-, 26 lowercase and 10 numeric characters (=62). By using only the needed 6 characters you get 62^6 (=56,800,235,584) possible passwords.
Not enough? Use a length of 8 (=218,340,105,584,896) or 10 (=839,299,365,868,340,224) characters. Now enough? 
If they store the passwords directly in any form, they are absolutely insane and unaware of modern standards. At the very least the password should be stored only after a one-way hash has been applied. SHA1 or such. Symbols are then irrelevant. This is kids’ stuff.