Toronto-Dominion Bank allows case sensitive 8-32 character passwords with special characters.
Unless TD recently changed their requirements, this is not true. TD Easyweb (lol) stores a password of 5 to 8 characters.
What's worse is that while TD does allow you to enter passwords greater than 8 characters long and will let you happily believe that it stored the password you entered, it actually only stores the first 8 characters and validates against those. That is to say if when you created your account you entered a password of "Aardvark123zxcv", Easyweb will not mention anything about your password being too long, but your actual password is truncated to "Aardvark". When you log in, Easyweb will accept "Aardvark<anything else>" as a valid password [0].
It took me a year before I accidentally discovered that my 15 characters password was actually being truncated to 8 and I didn't need to type in those last 7 characters as all. There was absolutely no indication from the UI that the extra characters were unnecesary.
Whoever gave the Globe and Mail journalist the information about TD's password restrictions didn't differentiate between TD Bank USA ("TDB") and TD CanadaTrust ("TDCT"). TDCT is the Canadian corporate entity (and parent corporation). TDB is TDCT's US banking operation.
TDB has password restrictions listed in the article (8-32 characters with some special characters). TDCT restricts one to the 8 character restriction (!), as you pointed out. EasyWeb is the name of the TDCT (Canadian) online banking site. There is no corresponding brandname for the TDB (US) online banking site.
The highly restrictive TDCT password is why I have to keep changing my TDCT password rather often compared to other online banking accounts.
This is simply not true. My TDCT password is 32 characters long, and 8 of the 32 will not cut it. TDCT needs at LEAST 8 characters, one letter, one number, but no longer than 32 chars. I think some symbols are restricted.
I stand corrected. I just checked my "change password" option on TDCT and it now allows 8-32 characters. A year ago, this wasn't possible for my TDCT account as I distinctly remember the difference between the US and Canadian online banking experiences. I should read the fine print more often.
Unless TD recently changed their requirements, this is not true. TD Easyweb (lol) stores a password of 5 to 8 characters.
What's worse is that while TD does allow you to enter passwords greater than 8 characters long and will let you happily believe that it stored the password you entered, it actually only stores the first 8 characters and validates against those. That is to say if when you created your account you entered a password of "Aardvark123zxcv", Easyweb will not mention anything about your password being too long, but your actual password is truncated to "Aardvark". When you log in, Easyweb will accept "Aardvark<anything else>" as a valid password [0].
It took me a year before I accidentally discovered that my 15 characters password was actually being truncated to 8 and I didn't need to type in those last 7 characters as all. There was absolutely no indication from the UI that the extra characters were unnecesary.
[0] http://forums.redflagdeals.com/td-online-banking-should-i-wo...