Blotting out the PASSWORD from Visibility

  • Resolved jasonb4u2

    (@jasonb4u2)


    7 years, 4 months ago

    May I ask why is it that the password cannot be blocked out like all the other SMTP mail plugins blot out the password ?

    If we have a WordPress Tech do work on our sites this then actually leaves our email totally vulnerable for being hacked by others because they then know our password, the password is visible !

    Its not a matter of trusting the tech, as these days no one can be trusted, thats a common fact

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author Slava Abakumov

    (@slaffik)

    What do you mean “blocked out”?
    Some plugins use <input type="password" value="123456">, which on a page shows the password as a ****** but it still is stored clearly in DB (because the SMTP requires the password be sent in clear text). So changing type="password" to type="text" will show you your password.

    You can use constants to redefine the password in your wp-config.php. See the main plugin code at the top, with description of what is needed for that.
    But you will need to put the password in that php file in clear text as well, same as WordPress does with your database credentials.

    I don’t say, that this is good, I would like to say, that there is no easy workaround if you want to both save and see password (and it’s required to be not encrypted).

    Plugin Author Slava Abakumov

    (@slaffik)

    Password will be behind asterisks, (type="password"). That’s all that I can do for now.

    Thread Starter jasonb4u2

    (@jasonb4u2)

    What you sent, what am I suppose to do with that ?

    Can you be more informative, this is not in yr update.

    And if Im suppose to change something what line am I changing.

    I Cant do it with that little reply you sent

    Plugin Author Slava Abakumov

    (@slaffik)

    This change will be available in the next release of the WP Mail SMTP plugin.
    You don’t have to change anything. Just please be a bit patient ??

    Thread Starter jasonb4u2

    (@jasonb4u2)

    I see that I posted that question 2+ weeks ago and there was just an update 2 days ago, just wondering that tiny code could’ve been added yet it wasn’t.

    Id seriously like to know what I gotta do to keep it private from technicians who work inside my site please.

    This is quite a serious request as it protects security for the WordPress user using your plugin that hasn’t the security hide password feature

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Blotting out the PASSWORD from Visibility’ is closed to new replies.