Password change behavior #5181
Comments
|
cc @jancborchardt for this |
|
Viewing the password in plain text is the best solution to quickly absolutely make sure that your password is correct. The attack vector of being able to check your screen or keyboard is even amplified in the case where you would repeat your password, as there people can check out the screen/keyboard twice. |
|
Can't confirm this actually. Had a colleague sitting next to me and couldn't check my password in this case. Also I can't view my entered password entirely:
|
This was referenced Jul 25, 2018
|
Seems to be a duplicate of #3565 |
Correct -> let's close this here. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
As mentioned by @eppfel in #4839 I would like to suggest a modification in the password change process.
It would be great to add one more field to verify the newly entered password (repeat new password). I have file encryption enabled and recovery set to false which means if I make a mistake while entering the password once, all my data will be lost unrecoverable.
Or do I miss something here?
Also viewing the plain text of the password to review it is not always a suitable solution.
Thank you guys for your awesome work!
The text was updated successfully, but these errors were encountered: