WordPress password unmask

  • On WordPress.com registration page password is unmasked.
    Unmasked password is very usefull for user:

    • because user will avoid errors in password while typing it
    • it is easy for user to indicate if CAPS LOCK is enabled
    • it is easy to indicate if another language is turned on (popular for users in non English-speaking countries)
    • user does not have to type password twice

    Unmasked password does not increase security because there are no spies behind user while user is registering.

    It would be good for users to add the same approach into WordPress core.

Viewing 3 replies - 16 through 18 (of 18 total)
  • Thread Starter webvitaly

    (@webvitaly)

    @mika Epstein: By the way, on WordPress installation process the password to database is unmasked, but the password for new username is masked and user should enter it blindly twice. IMHO it is not logical.
    Do you think that password for database should be masked too or password for user should be unmasked?

    this was great discussion, found a couple plugins I can use on my localhost installs. using MAMP. can’t tell you how many WP installs I have lost the passwords for, this will be so useful. one computer blew the harddrive, and tho I had a full backup the passwords did not work on the restores. just had to delete them and start over, but with the show the password plugins…. well, that’ll save a lot of future experiments and time.
    So thanks.

    Ipstenu –

    I work for a WebHost. I see, first hand, how stupid, insecure, and oblivious people are. If I can reduce that by hiding passwords by default and making them work to show ’em, you bet your bippy I will ??

    I agree.

    At the end of the day, if someone is installing a blog on a public computer then they have much larger issues at hand. ??

Viewing 3 replies - 16 through 18 (of 18 total)
  • The topic ‘WordPress password unmask’ is closed to new replies.

Tags