https://bugzilla.wikimedia.org/show_bug.cgi?id=25925
--- Comment #14 from Matthew Flaschen <[email protected]> --- > Why a mistake? You know, before the minimum password length was 1, it was 0. I know that. I haven't heard a good explanation of why it was bumped only to 1, rather than something more reasonable. It was a mistake originally since we let users (many of whom definitely don't understand the issue) use extremely weak passwords. Yes, they may use a weak password either way, but at least not "pick a number between 1 and 36 weak". I agree it's a far more important discussion for users with elevated rights, but that doesn't mean we should necessarily take no action for regular editors. Bug 16345 was just about writing an extension. The initial comment did say "enforce varying levels of password security by user group (ie admins have an intermediate level, stewards must have a high level)". But it doesn't look like Extension:SecurePasswords, which was given as a reason to close the bug, does that in any way. I've opened bug 44788 specifically for password requirements by group. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
