Wordfence Message

  • Resolved jpridemore

    (@jpridemore)


    8 years, 4 months ago

    I received this message: Warnings:

    * User “**********” with ‘subscriber’ access has a very easy password.

    How can Wordfence know this without reading my encrypted password table?

    Jim Pridemore

Viewing 2 replies - 1 through 2 (of 2 total)
  • mountainguy2

    (@mountainguy2)

    8 years, 4 months ago

    It is Wordfence, it knows all.

    My understanding is Wordfence does a faux brute force attack on your passwords, and tells you if it finds one that’s easily guessed. I don’t think much of this as it seems like amature hour, instead I just make sure all my user passwords are strong, and keep all that password checking monkey business disabled.

    MTN

    wfalaa

    (@wfalaa)

    8 years, 3 months ago

    Hi @jpridemore
    This can be done by comparing your users’ hashed passwords with a list of hashed strings for passwords that aren’t recommended like (admin, root, 1234, etc…).

    Thanks.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Wordfence Message’ is closed to new replies.