[wp-trac] [WordPress Trac] #48910: Restrict common user names when user registers/while WP installation
WordPress Trac
noreply at wordpress.org
Sat Dec 7 18:33:50 UTC 2019
#48910: Restrict common user names when user registers/while WP installation
-------------------------+-----------------------------
Reporter: guddu1315 | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: 5.3
Severity: normal | Keywords:
Focuses: |
-------------------------+-----------------------------
Hello
While the installation of WordPress, user can use any names as usernames
such as 'admin', 'administrator', 'user', 'root', 'webadmin', 'webmaster',
'test' etc.
These are very common & predictable usernames. Along with easy password
and easy username it becomes really easy for anyone to get into backend.
We have password strength indicator. And a checkbox for user to accept
that he is okay with using the weak password. But nothing for username.
There should be some restriction on usernames. Users should not be able to
add some of the common usernames. If they want to use the restricted words
then there should a checkbox informing them that this might be vulnerable
to the site.
Thank you.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/48910>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list