[wp-hackers] Default password length

DD32 wordpress at dd32.id.au
Wed Feb 6 13:24:17 GMT 2008


I think Callum was simply refering to the default automatically generated passwords.

They're a 6 character(going off his post) hexadecimal number.

I dont see a need to increase the length, its a good length for remembering in your head while your setting up a new installation, and honestly, people should be changing that password as soon as they login, or if they've just reset the password.

On Wed, 06 Feb 2008 23:34:42 +1100, Olivier-Bernard RICHARD <olivier-bernard.richard at edf.fr> wrote:

>> As
>> part of the password handling changes, can we push that out to 8
>> characters and improve the random algorithm?
>
> I definetely -1 this. I expect that the software I use has the ability to
> protect & encrypt & everything what I store in it, but it's up to me if I
> want to pick 123456 or 1l0vey at u_ for whatever reason. I absolutely *hate*
> it when I register with a new service and it tells me I cant use a
> password because it's too short, or doesnt contain enough mixed case, or
> contains my nick, or whatever.
>
> I'd rather add a link to a Codex page helping users pick a password and
> warning about a thing or two most people ignore (ie why it's a bad idea to
> use '123456' or 'password' as a password)
> _______________________________________________
> wp-hackers mailing list
> wp-hackers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-hackers
> 





More information about the wp-hackers mailing list