Dena Silver
My feedback
-
24 votes
Dena Silver supported this idea ·
An error occurred while saving the comment -
22 votes
Dena Silver supported this idea ·
An error occurred while saving the comment Dena Silver commented
Our site was recently attacked and after a security assessment our consultant made the strong recommendation that we ask our members to update their passwords BUT also to ask WA to tighten their password requirements.
From the cyber security Consultant:
The Member Portal does not enforce complex passwords. According to Wild Apricot’s password settings page, the only requirement for user passwords is a minimum length of 7 characters. This allows users to choose very weak passwords for their accounts and can allow attacks to comprise those accounts with password guessing.
Recommendations
While it is not possible to configure the Member Portal’s password setting to a stronger setting, a support ticket should be created to request stronger passwords. You should contact Wild Apricot to request the ability to enforce stronger passwords for users.
Recommends the following settings for complex passwords:
Increase the password length from 7 to 10 characters
Require users to use upper and lower case letters
Require users to use special characters in their password -
24 votes
Dena Silver supported this idea ·
-
15 votes
Dena Silver supported this idea ·
-
4 votes
Dena Silver shared this idea ·
-
13 votes
Dena Silver supported this idea ·
-
131 votes
Dena Silver supported this idea ·
-
4 votes
Dena Silver supported this idea ·
-
5 votes
Dena Silver supported this idea ·
-
5 votes
Dena Silver shared this idea ·
-
183 votes
Dena Silver supported this idea ·
Credit card information is not the only sensitive information stored on the site. Please improve the security of the password process