|
Joined: Feb 2004
Posts: 138
member
|
member
Joined: Feb 2004
Posts: 138 |
Hello,
I had to modify the old UBB 6.7.3 to allow this feature btu I cannot figure out how to enable it here in this version of the software. How do I make the user's password shoudl up under theri user profile when looking at them as an Administrator in the Control Panel?
Last edited by Travis T; 04/09/2008 6:13 PM.
|
|
|
|
Joined: Jun 2006
Posts: 811
old hand
|
old hand
Joined: Jun 2006
Posts: 811 |
|
|
|
|
Joined: Feb 2004
Posts: 138
member
|
member
Joined: Feb 2004
Posts: 138 |
OK - if this not doable, how do I re-inforce tough passwords then? Or does it do this already?
Travis
|
|
|
|
Joined: Jun 2006
Posts: 16,299 Likes: 116
|
Joined: Jun 2006
Posts: 16,299 Likes: 116 |
Since passwords are encoded in the database, theres no way to "manually" check out the password.
You'd have to say, use a javascript (like what several sites use) for checking the password's length (which IMO does nothing on actually checking that the password is "secure").
I think that Rick mentioned something with this on the 7.4 UI overhaul, but that was some time ago that it was talked about.
|
|
|
|
Joined: Feb 2004
Posts: 138
member
|
member
Joined: Feb 2004
Posts: 138 |
So then a child could changes their password to 1111 and get it hacked lickety split? Not very secure if you ask me.
Travis
|
|
|
|
Joined: Jun 2006
Posts: 16,299 Likes: 116
|
Joined: Jun 2006
Posts: 16,299 Likes: 116 |
Lol, do you honestly have a site that would see many children visiting on their parents accounts? I've never even heard of this happening before...
|
|
|
|
Joined: Feb 2004
Posts: 138
member
|
member
Joined: Feb 2004
Posts: 138 |
NO - it is 100% children all between 8 and 16. Anyone under 17 is not allowed to set thier own password. In the past when thsi has happened they have opened themselves up to trouble so now there parents request that we set their passwords and we keep them on file.
Travis
|
|
|
|
Joined: Feb 2007
Posts: 1,294 Likes: 2
Veteran
|
Veteran
Joined: Feb 2007
Posts: 1,294 Likes: 2 |
You can always become the user and change the passcode through the administer control panel.
|
|
|
|
Joined: Feb 2004
Posts: 138
member
|
member
Joined: Feb 2004
Posts: 138 |
This is only effective if I can at least limit what they can set their passwords to - but it appears any 4 characters will do it. That is extremely UNSAFE. This was a great feature in UBB.Classic - why dump it???
Travis
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
It's not a matter of DUMP it. It's a matter of version 7 was a complete re-write and many features of the older classic are being reintroduced as time permits, along with many other NEW features.
Just hang in there and in time most items that were of value in Classic should return.
|
|
|
|
Joined: Jun 2006
Posts: 16,299 Likes: 116
|
Joined: Jun 2006
Posts: 16,299 Likes: 116 |
Security was the key thing... Keeping passwords in plain text had major security issues. So encoding the password makes the "plain text" password's security a non-issue as they're no longer plain text...
|
|
|
Bots
by Outdoorking - 04/13/2024 5:08 PM
|
|
|
|
|
|
0 members (),
476
guests, and
170
robots. |
Key:
Admin,
Global Mod,
Mod
|
|
|
|