WordPress.org

Make WordPress Core

Opened 2 weeks ago

Last modified 2 weeks ago

#44333 new defect (bug)

Password hint label needs to be re-worded and needs to have a minimum password length check

Reported by: subrataemfluence Owned by:
Milestone: Awaiting Review Priority: normal
Severity: major Version:
Component: Login and Registration Keywords: needs-patch dev-feedback
Focuses: administration Cc:

Description

When resetting password, the help text under password box says:

Hint: The password should be at least twelve characters long. To make it stronger, use upper and lower case letters, numbers, and symbols like ! " ? $ % ^ & ).

Although it says should be at least twelve characters long, I am able to use only one character!

  1. The above help text needs to be re-worded with some like:
Hint: The recommended length of the password should be at least twelve characters and must have at least X characters. To make it stronger, use upper and lower case letters, numbers, and symbols like ! " ? $ % ^ & ).

X can be a number say 6, 8 etc.

  1. I believe there needs to be a minimum length check.

Change History (4)

#1 @subrataemfluence
2 weeks ago

  • Severity changed from normal to major

#2 @joyously
2 weeks ago

"should" does not equal "must".

The password functions are pluggable.

#3 @subrataemfluence
2 weeks ago

Thank you for telling me the difference! Even it is pluggable I think to have a guarding for a minimum length of password is a good idea to have upfront. I hope this makes some sense. Please correct me if you think I am wrong.

#4 @swissspidy
2 weeks ago

Even it is pluggable I think to have a guarding for a minimum length of password is a good idea to have upfront

Sounds like a duplicate of #35817 to me.

Note: See TracTickets for help on using tickets.