[SOLVED] Users can choose any password like "123"
-
- Posts: 6
- Joined: Sat Jun 23, 2018 11:00 pm
- Os: CentOS 6x
- Web: nginx + php-fpm
[SOLVED] Users can choose any password like "123"
Hi, I just posted problem #652 under bugs.vestacp.com.
Main problem I see is that the user can change his password and choose anything, eg. 123 and then eg. login via sftp or to the control panel at port 8083 with that password. If anyone has suggestions how to fix rhel 7, that would be greatly appreciated.
Thanks
Main problem I see is that the user can change his password and choose anything, eg. 123 and then eg. login via sftp or to the control panel at port 8083 with that password. If anyone has suggestions how to fix rhel 7, that would be greatly appreciated.
Thanks
Last edited by pozzo-balbi on Sun Jul 01, 2018 2:14 pm, edited 1 time in total.
Re: Users can choose any password like "123"
https://github.com/serghey-rodin/vesta/pull/1638/filespozzo-balbi wrote: ↑Sat Jun 30, 2018 8:17 pmHi, I just posted problem #652 under bugs.vestacp.com.
Main problem I see is that the user can change his password and choose anything, eg. 123 and then eg. login via sftp or to the control panel at port 8083 with that password. If anyone has suggestions how to fix rhel 7, that would be greatly appreciated.
Thanks
-
- Posts: 6
- Joined: Sat Jun 23, 2018 11:00 pm
- Os: CentOS 6x
- Web: nginx + php-fpm
Re: Users can choose any password like "123"
Great, and thanks for the fast update. I tested it and it is working. So I hope it will be included in further updates.