描述

This plugin sets a default minimum password length of 10 characters, to ensure that passwords are suitably long that they are hard to guess. However, it does not insist on any complexity rules, such as digits and special characters, as length is the most important thing when making a password hard to guess.

This plugin uses Troy Hunt’s Pwned Passwords API in order to check a user’s potential password against a corpus of breached passwords.

The password itself is never sent to any third party, only a partial hash is sent. This means that the password entered will always be private.

As an added bonus, this plugin also upgrades the hashing algorithm used when storing your password in the database. This is a secure one-way hash created using the Bcrypt or Argon2 algorithm.

评价

RayBernard 2020 年 11 月 15 日 1 回复

I like this plugin because it is simple in its design, easy to use, and strong in its password protection. I highly recommend it. Cybersecurity is a fast moving domain, and this plugin smartly used a standards-based approach that makes it easy to keep your website password security to the latest levels of available protection.

Robert Seyfriedsberger 2019 年 7 月 28 日

I use this plugin on all of my sites - it not only checks if a used password is included in a haveibeenpwned.com leak, but also forces Wordpress to use more secure hashing algorithms for saving passwords. Highly recommended!

阅读所有2条评价

贡献者及开发者

“Better Passwords” 是开源软件。以下人员对此插件做出了贡献。

将“Better Passwords”翻译成您的语言。

对开发感兴趣吗?

您可以浏览代码，查看SVN仓库，或通过RSS订阅开发日志。

Better Passwords

描述

评价

Simple and Powerful

Recommended plugin

贡献者及开发者

对开发感兴趣吗?

评级

贡献者

支持

描述

评价

贡献者及开发者

对开发感兴趣吗?

额外信息

评级

贡献者

支持