49
k... this thread has been long enough, so I'll bring my 2c shortly:
- I agree the real name may be a good thing, but that is should
not be changed
- I also think that, security-wise what it brings is limited (now: it's not "nothing", but it's limited)
- The default minimum lengths set for new users login/pwd in the core should be changed (by default it's 3 and 5 chars, which is not enough)... admins can change them, so no big deal, it's just that by default XOOPS should be installed with something like 6 and 8.
- We cannot "expect" users to use a safe complex password, but we can force them
![](https://xoops.org/uploads/smil42e7a65fee35d.gif)
Maybe adding an option for admins to enforce complex passwords (so dumb ones are refused) would be nice too (I'll try to find a way to implement that one)
skalpa.>
Any intelligent fool can make things bigger, and more complex. It takes a touch of genius, a lot of courage, to move in the opposite direction.
Two things are infinite: the universe and human stupidity; and I'm not sure about the 1st one (A.Einstein)