[wp-trac] [WordPress Trac] #35817: Force users to set strong passwords
WordPress Trac
noreply at wordpress.org
Wed Aug 10 16:35:30 UTC 2016
#35817: Force users to set strong passwords
----------------------------+------------------------------
Reporter: ericlewis | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Administration | Version: 0.71
Severity: normal | Resolution:
Keywords: 2nd-opinion | Focuses: ui
----------------------------+------------------------------
Comment (by lovingboth):
Replying to [comment:10 ericlewis]:
> We had a nice chat about this
[https://wordpress.slack.com/archives/core/p1470761715002581 in #core
today].
I will have a look when I can do audio rather than text but..
> * If we required strong passwords, users would probably do the least
minimum change to their weak password to meet the rule.
Quite possibly, but it should be up to the admin to decide what quality of
password to require.
Plugins exist to do this, but as everyone knows, the takeup of them is a
tiny fraction of installs. Do a search for 'password strength' in plugins
and the first one has 1,000+ installs (and the third one, to stop
WooCommerce doing it has 2,000+ installs!)
> * It would be useful to know what causes more problems: weak passwords
or password reuse.
It would, but I'm not sure it's relevant to this feature request.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/35817#comment:11>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list