Change your password rules

Reply
Highlighted
I'm a Participant Level 2
I'm a Participant Level 2

Change your password rules

Issue: When changing my password I saw this error message: "Only these special characters can be used: ! @ # $ % ^ & * . : ; { } [ ]".

 

There is no technical limitation in Oracle/MySQL/MS SQL databases to store passwords with *all* special characters, including "(", "<", ">", "'", "\"", and ")".

 

Does your website use SQL parameterization? If so you are safe supporting the above characters. If not, my data is insecure!

 

I would prefer to have this improvement be included in future releases of your website.

 

Thanks!

Flag this to a Moderator
Message 1 of 2
112 Views
Highlighted
Moderator
Moderator

Re: Change your password rules

Hey @gfdghrie7thgrei,

 

Welcome to the Community. Smiley 

 

Thanks for your feedback on this. For security reasons we can’t post technical details on this topic. However, we assure you that Fido follows industry best practices for password management and security. We're regularly reviewing and updating our protocols to ensure customer information remains properly safeguarded!



Flag this to a Moderator
Message 2 of 2
78 Views