Maniphest T122248

Password/login related security issues (Tracking)
Open, MediumPublic
Actions

Assigned To

None

Authored By

	Bawolff
	Dec 22 2015, 10:00 PM

Tags

Subscribers

Description

Tracking bug for password related security issues (Whether, password complexity requirements, hashing, rate limitting of logins, etc)

Related Objects
Search...

		Status	Subtype	Assigned	Task
					Restricted Task
		Resolved		Bawolff	T122164 Better limitation on number of password guesses people can make
					Restricted Task
		Duplicate		None	T122123 Send echo notification to user of how many failed logins there was since last successful login
		Open		None	T122248 Password/login related security issues (Tracking)
		Resolved		csteipp	T119100 Increase MinimalPasswordLength to 8 for several local and global groups
					Restricted Task
		Resolved		csteipp	T116030 Increase pbkdf2 parameter strengths (2015/2016)
		Resolved		None	T127396 Logins with CentralAuth fail when password re-hashed
		Open		None	T235001 Customize a version of wrapOldPasswords.php for CentralAuth
					Restricted Task

Event Timeline

Bawolff created this task.Dec 22 2015, 10:00 PM

Bawolff raised the priority of this task from to Needs Triage.

Bawolff updated the task description. (Show Details)

Bawolff added a subscriber: Bawolff.

Restricted Application added subscribers: StudiesWorld, Aklapper. · View Herald TranscriptDec 22 2015, 10:00 PM

Krenair added projects: Tracking-Neverending, Security-Core, MediaWiki-User-login-and-signup.Dec 22 2015, 10:01 PM

Krenair added a subscriber: Krenair.

csteipp edited projects, added Security-Team; removed MediaWiki-User-login-and-signup, Security-Core, Tracking-Neverending.Dec 22 2015, 10:01 PM

csteipp set Security to None.

csteipp removed a subscriber: Krenair.

Bawolff added a parent task: T122164: Better limitation on number of password guesses people can make.Dec 22 2015, 10:01 PM

csteipp added projects: Tracking-Neverending, MediaWiki-User-login-and-signup.Dec 22 2015, 10:02 PM

Bawolff added a parent task: Restricted Task.Dec 22 2015, 10:02 PM

csteipp added subtasks: T119100: Increase MinimalPasswordLength to 8 for several local and global groups, Restricted Task.Dec 22 2015, 10:04 PM

csteipp added a subtask: T116030: Increase pbkdf2 parameter strengths (2015/2016).Dec 22 2015, 10:06 PM

Bawolff added a parent task: T122123: Send echo notification to user of how many failed logins there was since last successful login.Dec 22 2015, 10:06 PM

csteipp closed subtask T116030: Increase pbkdf2 parameter strengths (2015/2016) as Resolved.Mar 8 2016, 6:08 PM

csteipp closed subtask T119100: Increase MinimalPasswordLength to 8 for several local and global groups as Resolved.Mar 15 2016, 3:23 PM

Bawolff edited projects, added Security-team-backlog; removed Security-Team.Sep 4 2018, 3:45 PM

• chasemp edited projects, added Security-Team; removed Security-team-backlog.Dec 23 2019, 5:12 PM

• chasemp moved this task from Incoming to Back Orders on the Security-Team board.

• chasemp triaged this task as Medium priority.Dec 23 2019, 5:19 PM

Xaosflux added a subscriber: Xaosflux.Jan 11 2021, 3:37 PM