[wp-trac] [WordPress Trac] #6146: wp_generate_password() fails the
password strength meter
WordPress Trac
wp-trac at lists.automattic.com
Mon Mar 10 08:45:12 GMT 2008
#6146: wp_generate_password() fails the password strength meter
------------------------+---------------------------------------------------
Reporter: tellyworth | Owner: anonymous
Type: defect | Status: new
Priority: normal | Milestone: 2.6
Component: General | Version:
Severity: normal | Keywords: has-patch
------------------------+---------------------------------------------------
The text below the password strength meter says "Use upper and lower case
characters, numbers and symbols like !"?$%^&( in your password." But the
passwords returned by wp_generate_password() don't do that - in fact they
aren't measured as "strong" by the meter, just "good".
The enclosed patch increases the length of generated passwords, and
includes symbols in the character set. It also allows the length to be
specified with a parameter. Passwords generated after the patch are
almost always considered strong by the strength meter.
Regardless of whether or not the increased length is accepted, I think
it'd be a good idea for wp_generate_password() to accept a length
parameter.
--
Ticket URL: <http://trac.wordpress.org/ticket/6146>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list