Support Multi-Word Passwords

Discuss general development subjects that are not specific to a particular version like the versioning control system we use or other infrastructure.
User avatar
Arty
Former Team Member
Posts: 985
Joined: Wed Mar 06, 2002 2:36 pm
Location: Mars
Contact:

Re: Support Multi-Word Passwords

Post by Arty »

kjtocool wrote:Because unique fields forces the user to enter a phrase, one field simply allows it. With one field, you can't force an entire forum to follow.
And how forcing whole forum to follow could be a good thing? Chances that password will be brute forced are close to 0, chances that it will be stolen from document that user had to create on desktop because admin wanted to force his habits on others or someone found a paper user wrote password on are much higher.

Oleg
Posts: 1150
Joined: Tue Feb 23, 2010 2:38 am
Contact:

Re: Support Multi-Word Passwords

Post by Oleg »

Something established like http://php.net/manual/en/book.crack.php is probably better than trying to figure out what a "strong" password is.

Not all boards need military-grade security. Unless an administrator configures password strength requirements (and I believe this is already possible to some extent), users should have the ability to use single-digit passwords if that is what they fancy.

User avatar
bantu
3.0 Release Manager
3.0 Release Manager
Posts: 557
Joined: Thu Sep 07, 2006 11:22 am
Location: Karlsruhe, Germany
Contact:

Re: Support Multi-Word Passwords

Post by bantu »

I agree. There is no need for multiple password fields because you can do the same thing with a single field. Password length and complexity settings already allow you to configure how complex a password has to be.

I'd rather take patches for adding another complexity option "has to be a whole passphrase" or something like that.

Also, "multi-word passwords" are already supported, so your topic title is a bit incorrect.

Post Reply