WordPress.org

Ready to get started?Download WordPress

Forums

iThemes Security (formerly Better WP Security)
Not enforcing strong passwords for lost password dialog (1 post)

  1. billsmithem
    Member
    Posted 1 year ago #

    Any user can set their password to anything if they change it using the reset password form (select "Lost Password").

    I'm still using "Force Strong Password" (need version 1.1 at https://github.com/gyrus/Force-Strong-Passwords as the repository has not yet been updated) to provide this.

    It would be nice if I didn't need the additional plugin just to close this one security hole that is almost covered by BWPS.

    http://wordpress.org/extend/plugins/better-wp-security/

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic