We’ve had a couple of complaints lately about how one of our sites requires the user’s password be at least 12 characters long, and suggests the use of special characters and capitals to increase password strength. I’ve had a look around our plugins and settings and such and I do not see anything dictating password length or strength, so I’m assuming this is the default? If so, how do I reduce the minimum character count to something far more reasonable like, say, 8?
1 Answer
A.) By default WordPress allows short passwords but “Confirm use of weak password” must be checked.
B.) Disable security plugins or change their settings if possible as they can and do override whatever WordPress implements by default.
C.) The latest consensus about passwords suggests the strongest passwords are extra long easy to remember phrases like: !-visited-!600-w-pennsylvan!a-avenue