Confusing password strength behavior
|Reported by:||mgriesde||Owned by:|
|Component:||Login and Registration||Keywords:|
Description (last modified by SergeyBiryukov)
we're using WordPress together with the lifterLMS plugin. lifterLMS uses standard WordPress passwort strength functionality.
We've enabled to force strong passwords. Also to display the password strength meter. As a hint for our customer a text is displayed, that they should use at least 6 characters, a combination of alphanumeric and numeric characters and special characters.
But not in every case the password is interpreted to be strong. For example:
mfjg#0 => just medium (meets the above mentioned requirement)
mfjg#08 => strong
mfjg#081 => medium (confusing, because it has one more character...)
mfjg#0815 => strong (again...)
So what are the concrete password rules? I don't understand the behavior how the password strength is calculated. Also our customers don't.
Thanks in advance
Change History (11)
- Milestone Awaiting Review deleted
- Resolution set to invalid
- Status changed from new to closed