Displaying admin password on wrong input ?

A place to discuss the testing process in beta cycles or against SVN for the CMS Made Simple CORE package.
Locked
Dj_Apx

Displaying admin password on wrong input ?

Post by Dj_Apx »

Hello,

I was just wondering : why does CMSMS display the password you entered in the admin panel when you entered it wrong ?
i found out that :
  • No other CMS does it
  • No other kind of big website does it
  • It's no use for the newbie-administrator who still sees this password as ***** characters, so it would never help him/her to find out where he/she got the password wrong
  • It could lead to anybody reading the almost-exact password in the html source if the admin left the browser open to that page or by using the 'back' button enough times even after the admin logs out
  • No login system i know of does it
So is there actually a reason for that ? I have to delete that feature every time i install CMSMS, i was just wondering if it had a use.

All the best,
DJ_Apx
Top
Ted
Power Poster
Power Poster
Posts: 3329
Joined: Fri Jun 11, 2004 6:58 pm

Re: Displaying admin password on wrong input ?

Post by Ted »

No real reason.  Just never really thought of removing it.  Good idea.  :)
Top
Locked

Return to “[locked] Quality Assurance”