need option to see generated password

  • It is simple to use and generates great passwords. I like it isn’t just for creating new users; people can use it to update their own passwords as well.

    My only concern is that there is no way to see the password that is being generated. You must ask WP to send it through the mail, which is in itself a security hole. If there was the option to see the generated password, this would be a 5-star plugin for sure.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Jake Goldman

    (@jakemgold)

    I would dispute your claim that sending the password to an email address is a security hole when WordPress lets anyone reset their password with just their email address.

    On the other hand, displaying it in a visible non-password field opens the door for onlookers or screen capture / recording malware to capture the input.

    Thread Starter Donna McMaster

    (@mcdonna)

    Onlookers and malware are threats that I can control. I work in a secured environment, not a coffeeshop. I agree with you that the password should be hidden by default, but I would like to you trust me when I say it’s safe for me to see it. ??

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘need option to see generated password’ is closed to new replies.