Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

dynsec_client__create: creates empty password on non matching passwords #2011

willem4ever opened this issue Jan 11, 2021 · 1 comment


Copy link

When passwords do no match an empty password is used instead of rejecting or re-prompting to re-enter.

Copy link

ralight commented Jan 11, 2021

You had me worried for a minute there. You're quite right, if the passwords do not match they should be rejected. The "empty" password here means a user does not have a password, and hence they would be unable to log in, rather than a password of "", which would be very bad.

@ralight ralight added this to the 2.0.6 milestone Jan 14, 2021
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Aug 11, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
None yet
None yet

No branches or pull requests

2 participants