Opened 17 years ago
Closed 17 years ago
#5837 closed defect (bug) (fixed)
WordPress and Moveable Type import create weak password
Reported by: | pishmishy | Owned by: | pishmishy |
---|---|---|---|
Milestone: | 2.5 | Priority: | high |
Severity: | normal | Version: | 2.3.3 |
Component: | Security | Keywords: | password import wordpress mt has-patch tested |
Focuses: | Cc: |
Description
wp-admin/import/mt.php and wp-admin/import/wordpress.php need to do something better than creating accounts with the password "changeme". For an import with few users it's not certain that the user will change all the new passwords, for an import with large numbers of users it could be a particularly laborious task.
Suggest generating a random password with the usual algorithm. User can have the admin change the password if needed, or run through the recovery process.
Attachments (1)
Change History (5)
Note: See
TracTickets for help on using
tickets.
Generates random passwords for users created by import