Weak password detection | ww.wp.xz.cn

Resolved batman42ca
(@batman42ca)

11 years, 3 months ago

I ran a Wordfence scan and it warned me that some users have weak passwords. Since the passwords are encrypted, how can Wordfence determine what is and isn’t a weak password without knowing the unencrypted password? Does it simply try obvious passwords like “1234”, “qwerty” and “password” to see if encrypting those match encrypted passwords in the database?

https://ww.wp.xz.cn/plugins/wordfence/

Viewing 1 replies (of 1 total)

WFBrian
(@wfbrian)

11 years, 3 months ago

Pretty much. We are brute forcing your passwords and letting you know when we are able to detect a weak password.

-Brian

Viewing 1 replies (of 1 total)

The topic ‘Weak password detection’ is closed to new replies.

1 reply
2 participants
Last reply from: WFBrian
Last activity: 11 years, 3 months ago
Status: resolved