WordPress.org

Ready to get started?Download WordPress

Forums

WP Mail SMTP
[Suggestion] Hide STMP password (18 posts)

  1. Bluemad
    Member
    Posted 1 year ago #

    Hello!

    This plug-in shows the email account password. Sometime we allow 3rd party to log-in to our site as an Admin (for an instance web developer). At that time, those people can view the password.

    Instead of showing the password, it's better if this plug-in can hide the password.

    Thanks!

    http://wordpress.org/extend/plugins/wp-mail-smtp/

  2. bdlsuz
    Member
    Posted 1 year ago #

    +1 on this. I have programmers in there working and we use the admin email address for site emails. It's not the most secure setup, but it's unnerving to have the password visible - regardless of the email account we are using.

  3. alberstein
    Member
    Posted 1 year ago #

    +1 as well!
    I also see that the password is not stored in sql with an MD5 hash. What up with that?!

  4. MEDUSOR
    Member
    Posted 1 year ago #

    Try to use a dedicated email address.

  5. moisb
    Member
    Posted 11 months ago #

    Edit line 302 of file /wp-content/plugins/wp_mail_smtp/wp_mail_smtp.php:
    <td><input name="smtp_pass" type="password" id="smtp_pass" value="<?php print(get_option('smtp_pass')); ?>" size="40" class="code" /></td>

  6. rmast
    Member
    Posted 6 months ago #

    For me too. As I am hosting a WordPress-site together with two other people who are less digitally interested and rather trustworthy I believe this row of stars would raise the security enough.

    The row of stars in Dutch law would make reading the password a 'hack'.

  7. PaulMighty
    Member
    Posted 5 months ago #

    Is it stored in the database as plaintext too?? Editing the input field type to password is ok for obscuring it on the front end, but I wouldn't want it in the DB in plaintext.

  8. PaulMighty
    Member
    Posted 5 months ago #

    And yes, I can confirm that it is stored as plaintext in the database. The Easy WP SMTP also has this security issue:
    http://wordpress.org/support/topic/pwd-stored-in-the-clear

    -PaulMighty

  9. Justin
    Member
    Posted 5 months ago #

    Seems like the solution for those of us who'd like better security is to allow it to be stored in wp-config.php which is much less likely to be hacked than the DB. You could still allow lay-persons to store it in their DB in plain text for simplicity but it really is best to store it in wp-config.php with the other sensitive info like Database and FTP credentials.

  10. i3inary
    Member
    Posted 5 months ago #

    +9 to this. I am going to have to fork this because its a deal breaker. I will wait a week and watch this thread for a reply.

  11. Gregoire Noyelle
    Member
    Posted 5 months ago #

    +1
    I agree
    Callum, you should hide password. Thanks

  12. davep99
    Member
    Posted 5 months ago #

    You can hide it by changing the following code in the PHP file (Editor manager) :

    Edit line 302 of file /wp-content/plugins/wp_mail_smtp/wp_mail_smtp.php:
    <td><input name="smtp_pass" type="password" id="smtp_pass" value="<?php print(get_option('smtp_pass')); ?>" size="40" class="code" /></td>

    This answer was given 6 months ago.

  13. PaulMighty
    Member
    Posted 5 months ago #

    @davep99

    Yeah, but that just obscures it on the rendered input field (e.g. "•••••••"). The password is still in plaintext in the page source, leaving it readable to anybody with half a brain. Deleting print(get_option('smtp_pass')) from the default value fixes this, although it does force you to input the password if editing the page, which might not be a bad solution.

    -PaulMighty

  14. PaulMighty
    Member
    Posted 4 months ago #

    The other issue occurs when sending a test email from the plugin's admin config page. If the test fails, the password is again written in plaintext:

    ["Username"]=>
    string(17) "some-email@gmail.com"
    ["Password"]=>
    string(9) "mypasswordinplaintext"

    -PaulMighty

  15. utnalove
    Member
    Posted 4 months ago #

    +1 - completely agree

  16. TeeDev
    Member
    Posted 4 months ago #

    Yea... this is the only negative with an otherwise very efficient plugin. +1

  17. Ryan
    Member
    Posted 3 months ago #

    Masking the password (ie. setting the form input type to "password") will stop over-the-shoulder password theft, but I doubt that is actually much of a threat IRL. Masking the password does nothing to actually "hide" or encrypt the password, and thus doesn't actually improve practical security.

    I suspect the problem here, and why this issue hasn't been, and cannot be, resolved is because there is no way to store the password in the database as encrypted, and then retrieve it as text to use in the mail function. If it could be decrypted with a public function, then it would be no more secure than a plain-text password.

    Saving and retrieving the password in the wp-config file only adds a mildly higher level of security, but I suppose would be a slight improvement. That, or have the plugin write the password to an included PHP file in the plugin's folder. But again, it would still need to be plain-text (or arbitrarily encrypted), as ultimately the password needs to be plain-text for the mailer function to use.

  18. Gregoire Noyelle
    Member
    Posted 2 months ago #

    thank's for clarifying the post Ryan.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.