Originally Posted by
jeffjohnvol
It's also possible that they are trying to avoid injection sql that can compromise the site. Too hard to explain, but you can google it if you don't already know what it is.
The other comment about hackers can get it if they really one special chars or not is absolutely correct. It would still be nice to mix it up though.
I used to make Excel VBA macros with code that was password protected, but I had a problem with a client running a password scanner to try all combinations. That's when I started using a password that uses non-printable characters (can't use on keyboard). I had to copy/paste the password to get to the source. They never cracked that one, LOL.