Passwords are required for all users to authenticate or access private groups.
From version 5.1 onwards, PageSeeder enforced a stronger password policy for all users.
The strength of each password is evaluated, from WEAK to STRONG, according to various criteria.
The following affect the password strength positively:
- The length of the password.
- The presence of digits or special characters.
- Whether mixed case characters have been used.
The following might affect the password strength negatively:
- Some characters are repeated.
- Some common sequences, such as ‘123456’ or ‘qwerty’ are used.
The following table shows the length required to generate the different strength levels.
The minimum length is the length required to pass the level if it includes at least a special character, a digit, and uses mixed case. The safe length is the length required to pass the level if it includes only lower case characters and 1 digit. The letter length is the length required to pass the level if it includes only lower case characters.
Some passwords are on the banned password list and aren’t accepted, regardless of whether they meet other criteria. They are common passwords which could be used for dictionary attacks.
Examples of banned passwords: password, passw0rd, pageseeder, 123456
From version 5.1 onward, blank passwords are no longer permitted.