Does the PW blacklist actually work?
- Status
- Open
- Subject
- Does the PW blacklist actually work?
- Version
- 18.x
- Category
- Support request
- Feature
- User Administration (Registration, Login & Banning)
- Resolution status
- New
- Submitted by
- hman
- Lastmod by
- hman
- Rating
- Description
Now that I found the tab with the password blacklist, I wanted to use it (to translate it - that was before I found out it is untranslateable).
I generated a custom (test) file of passwords to be banned. As the instruction says, a list with one banned password per line. I had two: "123456" and "test". Every one on a line of it's own. I uploaded the word list,
The counter of "Words currentyl indexed" remained at 0. I tried another setting than "Automatically select blacklist", there are many that claim "Word count: 1000". The counter of indexed words remained 0. Also tried "Create or Replace Word Index" and "Delete Temporary Index". The number of indexed words remained 0...
So does this thing actually work?
So far it did *not* block passwords 123456 and test...
- Importance
- 6
- Easy to solve?
- 1 difficult
- Priority
- 6
- Demonstrate Bug (Tiki 19+)
-
This bug has been demonstrated on show2.tiki.org
Please demonstrate your bug on show2.tiki.org
Accessing the Tiki instance that demonstrates this bugThe URL for the show2.tiki.org instance that demonstrates this bug is at: http://hman-11504-7499.show2.tiki.org. Note that if you get a popup asking for a username/password, please just enter "show" and "show". This is different from the initial login and password for a new Tiki which is "admin" and "admin".
For the install log, see http://hman-11504-7499.show2.tiki.org/info.txt
Note that if you see PHP errors or a Tiki claiming to be missing third party software, the instance creation is probably not finished. Please wait a couple minutes and reload.
SnapshotsSnapshots are database dumps of the configuration that developers can download for debugging. Once you have reproduced your bug on the show2.tiki.org instance, create a snapshot that can then be downloaded by developers for further investigation.
Snapshots can be accessed at: http://hman-11504-7499.show2.tiki.org/snapshots/. Note that if you get a popup asking for a username/password, please just enter "show" and "show".
Create new snapshot - Ticket ID
- 7499
- Created
- Sunday 16 August, 2020 20:36:01 GMT-0000
by hman - LastModif
- Sunday 16 August, 2020 20:36:01 GMT-0000
Attachments
| filename | created | hits | comment | version | filetype | ||
|---|---|---|---|---|---|---|---|
| No attachments for this item | |||||||
;){kind=link}
;){kind=link}
- Feature request: Be able to exclude (by category) the pages listed in Latest Changes module
- Add a command to console.php to invalidate certain objects in the search index
- Counting items in Items List Doesn't Work due to lack of , between items
- Modals in Quartz theme are too narrow
- Tracker Currency Field not working
;){kind=link}
;){kind=link}