Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Auth: Increase minimum password length from 4 to 8 characters #2248

Closed
lastzero opened this issue Apr 12, 2022 · 0 comments
Closed

Auth: Increase minimum password length from 4 to 8 characters #2248

lastzero opened this issue Apr 12, 2022 · 0 comments
Assignees
Labels
enhancement Refactoring, improvement or maintenance task released Available in the stable release security Impact on server or browser security

Comments

@lastzero
Copy link
Member

As a user connecting its instance to the public Internet, I want to set a reasonably long password to make brute force attacks more difficult.

An integer constant should be introduced to set the minimum length at compile time.

Related Issues:

@lastzero lastzero self-assigned this Apr 12, 2022
@lastzero lastzero added the enhancement Refactoring, improvement or maintenance task label Apr 12, 2022
lastzero added a commit to photoprism/photoprism-docs that referenced this issue Apr 12, 2022
see photoprism/photoprism#2248

Signed-off-by: Michael Mayer <michael@photoprism.app>
lastzero added a commit that referenced this issue Apr 12, 2022
Short name was changed from -a to --pw after the --auth flag was added.
@lastzero lastzero added security Impact on server or browser security please-test Ready for acceptance test labels Apr 12, 2022
graciousgrey added a commit that referenced this issue Apr 19, 2022
@graciousgrey graciousgrey added released Available in the stable release and removed please-test Ready for acceptance test labels May 17, 2022
This issue was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement Refactoring, improvement or maintenance task released Available in the stable release security Impact on server or browser security
Projects
Status: Release 🌈
Development

No branches or pull requests

2 participants