**** observed with 2001-09-06-03 build **** I am able to login into my account when one letter of the password that i am prompted to enter is incorrect. Login would fail if i mistype two of them. Steps to reproduce: - open mail/news; - in the password dlgbox mistype one letter at the end of your password; - click Ok to submit; //note: you are getting mail, you are in! expected result : login fails
Marina, the password is verified on the server, not the client. Only the first 8 characters are signficant on some servers. for historical reasons. Marking invalid, Please open a bug on the server if your password is less than 8 characters long.
hmm... i'll limit it now to 8 chars...still sounds weird.
verified, although some thought could be given to providing a hint in such cases?
we can't tell if a server has a limitation or not (without actually trying to shorten the password and testing it, and we're not going there!)