problem with enforcing strong passwords for forum login
Hi – hope someone can help with this.
I have a forum website set up using bbPress. Forum members are specifically invited as it is a leadership course for selected individuals. I create their user accounts including a strong password etc and send them the details.
An issue that I’ve come across is that the participants are widely spread around the world, some of whom have limited awareness of security issues on the internet. I want to ensure that they cannot change their password to an insecure one.
I’ve got iThemes security installed on the site and have activated the strong password enforcements with a minimum level of Subscriber. All of the course participants have a primary role of subscriber, with a forum role of Participant. With the settings I have in place they should not be able to change their password to a weak one. And yet they are currently able to log in and change the password to ‘changeme’ for example.
I’ve reached out to iThemes security but nothing helpful from them yet,
Can anyone here help me to figure out how to ensure that forum users cannot change their passwords to weak ones? Is there some setting in bbPress that I’m missing? Or some workaround that others use? I can’t imagine for a minute that I’m the only one to have come across this issue, but googling has turned up a surprising lack of information about how to resolve it.
Many thanks for your help.
Site URL: http://gcfleadership.org
WordPress version: 4.5.2
bbPress version: 2.5.9
- You must be logged in to reply to this topic.