The current value of USER_PASSWORD_MIN_LENGTH is 3, which looks a bit too small to me. It should be 6 or 8. This won't affect already set passwords, but new passwords will need to be longer.
Created attachment 413968 [details] [diff] [review] patch, v1 Nowadays, 3 characters-long passwords are too insecure.
Assignee: general → LpSolit
Status: NEW → ASSIGNED
Attachment #413968 - Flags: review?(mkanat)
Comment on attachment 413968 [details] [diff] [review] patch, v1 Yeah, agreed.
Attachment #413968 - Flags: review?(mkanat) → review+
Want to relnote it? Checking in Bugzilla/Constants.pm; /cvsroot/mozilla/webtools/bugzilla/Bugzilla/Constants.pm,v <-- Constants.pm new revision: 1.121; previous revision: 1.120 done
Status: ASSIGNED → RESOLVED
Last Resolved: 8 years ago
Resolution: --- → FIXED
Yeah, seems like a reasonable thing to relnote in the "Other Enhancements and Changes" section.
Added to the release notes in bug 547466.
You need to log in before you can comment on or make changes to this bug.