Cannot reset password even though new one meets Strong criteria

  • I can no longer log into my site because of a forgotten password. Easy enough to change right? Nope. Even though I am entering a password that meets the STRONG criteria, each new password is rejected. Since I have site lockout set, I can only get in a few tries before I am locked out again. Is there a fix for this issue that can be applied without being able to log into the site? (other than me not forgetting my password in the first place?)

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter deanfrail1967

    (@deanfrail1967)

    Though I do not yet have a solution to the problem of the STRONG password not being accepted by the iThemes security, I was able to back door into WP by copying a password from another WP account I have. (Using myPHPadmin database tool.)

    @deanfrail1967

    Interesting case.
    This issue is probably caused by a bug in the Strong Passwords feature.

    Would it be possible to obtain the original salt:hashed_password combination you have now overwritten in the database ? (from a database backup perhaps).

    I’d like to run that string through the iTSec plugin strong password algorithm.
    The result would confirm (or not) the bug I’ve found.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Cannot reset password even though new one meets Strong criteria’ is closed to new replies.