Recent Topics

More password glitches - 20 character password elicits minimum password length 5 characters.

Started by on Oct 21, 2019 – Contents updated: Oct 23, 2019

Oct 21, 2019 18:30    

More password glitches - 20 character password elicits minimum password length 5 characters.

Just what it says in the title, with screenshots. Does any part of the password system actually work? As it should? This time there is no other admin user to change the details of.

More password glitches - 20 character password elicits minimum password length 5 characters.

Oct 21, 2019 23:13

What's wrong?
The images you have shown exhibit no problem

Oct 21, 2019 23:23

Look at the error message at the top of the second image I took - Minimum password length 5 characters. That is an error message, not a statement of a normal condition. Look at the other image, the first I took. 20 dots replacing typed characters. Dismissed as being less than 5 characters in the second image. The password has not been changed as ordered. It is still the same insecure password I managed to hack in when locked out earlier.

I'd respectfully suggest that reflects a software fault, Or given the chain of events, probably more than one. There most certainly is something wrong. This board software has presented the images in the opposite order to that which I uploaded them. The meaning, however, is clear.

Oct 21, 2019 23:38

I see two images

Look at the error message at the top of the second image I took - Minimum password length 5 characters. That is an error message, not a statement of a normal condition.

a) The first/top image has a statement, in pink, that can be construed as a warning it is not the result of an error.

b) I see no warning or error in the second image ???

Better to show the whole browser page including url so others can see where you are and how you got there etc.

Oct 21, 2019 23:47

There is no warning in the second image. As stated, I took them and uploaded them in the opposite order to that in which they are presented. I took the second image first. I uploaded the second image first. There is nothing wrong with the way the board presents them so long as the reader tries to understand the order they should be in. Which I have tried, in my native tongue, English, to explain a few times.Read the bottom one first then the top one second.

The second image as presented shows that I entered the existing password then entered the new, 20 character, password and repeated it. The top one shows an error message. It is not a statement. It is an assumption that the 20 characters entered in the bottom image amount to less than five characters. Is this understood now?

No password has been changed as the result of entering a change of password command.

Oct 22, 2019 13:34

Hi Ok so you posted images in reverse order than as presented by the your test :)

I have just created a new user with a 21 character password asdfghk1234567£$%^* with no problem.

I will check to see if I have altered the maximum values allowed.

Oct 22, 2019 13:38

I can add new users with up to 45 chars passwords. What I cannot do is to change the admin - the most important one to keep secure - the admin user only - password at all.

BTW I posted the screenshots in the order I took them. What the system does with them beyond that point is beyond my control.

Oct 22, 2019 14:09

BTW I posted the screenshots in the order I took them. What the system does with them beyond that point is beyond my control.

You have total control over placement of the images. Try the drop down option Inline

Use the text [image:10292] where ever you want the image above for example.



I will address the admin password issue in another post.

Oct 22, 2019 22:09

PS the red note is not a b2evo error but indicates an invalid user input, a warning, etc but I am looking into why it occurred if as you indicate it happens even though you use a password of more than the 5 characters you have adopted as the maximum.

But if the issue cannot be replicated on my server or on any other user's you may want to look at your set up.

you can try ideas presented at https://b2evolution.net/man/disp-pwdchange which avoids evoadm.php

Oct 22, 2019 23:20

I see no problem.
Please give exact steps to reproduce.

This post has 1 feedback awaiting moderation...


Form is loading...

CMS – This forum is powered by b2evolution CMS, a complete engine for your website.