[wp-trac] [WordPress Trac] #6146: wp_generate_password() fails the password strength meter

WordPress Trac wp-trac at lists.automattic.com
Mon Mar 10 08:45:12 GMT 2008

#6146: wp_generate_password() fails the password strength meter
 Reporter:  tellyworth  |       Owner:  anonymous
     Type:  defect      |      Status:  new      
 Priority:  normal      |   Milestone:  2.6      
Component:  General     |     Version:           
 Severity:  normal      |    Keywords:  has-patch
 The text below the password strength meter says "Use upper and lower case
 characters, numbers and symbols like !"?$%^&( in your password."  But the
 passwords returned by wp_generate_password() don't do that - in fact they
 aren't measured as "strong" by the meter, just "good".

 The enclosed patch increases the length of generated passwords, and
 includes symbols in the character set.  It also allows the length to be
 specified with a parameter.  Passwords generated after the patch are
 almost always considered strong by the strength meter.

 Regardless of whether or not the increased length is accepted, I think
 it'd be a good idea for wp_generate_password() to accept a length

Ticket URL: <http://trac.wordpress.org/ticket/6146>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software

More information about the wp-trac mailing list