Password Strength?

  • Resolved kendawes

    (@kendawes)


    8 years, 2 months ago

    Hi!
    I’ve been using Profile Builder on a client’s member site and it works great!

    My client is complaining about passwords needing to be as strong as I have them set. (Personally, I’m against anything but “strong” passwords)

    My question is… The Profile Builder “Minimum Password Strength” has settings ranging from “Strong” down to “Very Weak” and “Disabled”.

    Is there any documentation as to what the parameters are for each of the Profile Builder’s password strength settings?

    I’ve seen in other Support questions that PB uses the default WordPress password strength. Does the PB strength setting modify the innate password strength requirement of WordPress?

    I know that if you use a weak password in WP, you have to check a box saying that you know that your password is weak. Does that checkbox appear when using any of PB’s “Medium: or “Weak” settings?

    i.e. If I use Profile Builder’s “Weak” setting, does it modify the WordPress strength to “weak”? If I use PB’s “Strong” setting, is that setting stronger than the default WordPress setting? Is one of PB’s strength settings equal to the default WordPress strength?

    Thank you for any guidance you can give!

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Georgian Cocora

    (@raster02)

    8 years, 2 months ago

    Hello @kendawes,

    Thank you for your message.

    Is there any documentation as to what the parameters are for each of the Profile Builder’s password strength settings?
    Unfortunately, no.

    Does the PB strength setting modify the innate password strength requirement of WordPress?
    No, we use it without modifying it.

    Does that checkbox appear when using any of PB’s “Medium: or “Weak” settings?
    No, if you use those options your users will be able to choose a password with a minimum strength of Weak/Medium or anything higher, but we don’t ask them to confirm the use of a weak password.

    The password strength option from WordPress is mostly there for reference, with our option you can enforce a minimum password strength that you desire and any user that register will need to enter a password with the strength and length you specified.
    This affects users that change their password from the Dashboard and also users that register through the default wordpress page and click on the link to set their password.

    Regards.

    Plugin Author Georgian Cocora

    (@raster02)

    8 years, 2 months ago

    More info: https://wordpress.stackexchange.com/questions/183061/how-is-password-strength-calculated

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Password Strength?’ is closed to new replies.