New Issue

#22 Weak password policy

Closed

opened 5 years ago by sindre · 0 comments

The password policy is incredibly weak. There is a very low character requirement, no check on common passwords, no check on previous passwords and no check on username aliases.

sindre added this to the Optional vulnerabilities milestone 5 years ago

sindre added the

webpy

label 5 years ago

sindre added the

bug

label 5 years ago

sindre added the

security misconfiguration

label 5 years ago

sindre modified the milestone from Optional vulnerabilities to Required fixes 5 years ago

sindre referenced this issue from a commit 5 years ago

Implement stricter password policy Fixes #22

sindre referenced a pull request that will close this issue 5 years ago

Various fixes #34

sindre closed 5 years ago

Sign in to join this conversation.

bug

security misconfiguration

webpy

Required fixes

No Assignees

1 Participants

Due Date

No due date set.

Dependencies

This issue currently doesn't have any dependencies.