[wp-trac] [WordPress Trac] #35817: Force users to set strong passwords

WordPress Trac noreply at wordpress.org
Wed Aug 10 02:23:05 UTC 2016


#35817: Force users to set strong passwords
----------------------------+------------------------------
 Reporter:  ericlewis       |       Owner:
     Type:  enhancement     |      Status:  new
 Priority:  normal          |   Milestone:  Awaiting Review
Component:  Administration  |     Version:  0.71
 Severity:  normal          |  Resolution:
 Keywords:  2nd-opinion     |     Focuses:  ui
----------------------------+------------------------------

Comment (by ericlewis):

 We had a nice chat about this
 [https://wordpress.slack.com/archives/core/p1470761715002581 in #core
 today].

 Some of the take-aways:

 * If we required strong passwords, users would probably do the least
 minimum change to their weak password to meet the rule. eg. instead of
 `june2286` I might use `june2286!` and perhaps reuse this password across
 different websites.
 * It would be useful to know what causes more problems: weak passwords or
 password reuse.
 * This may or may not align with project goals.

--
Ticket URL: <https://core.trac.wordpress.org/ticket/35817#comment:10>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list