CKinWoodstock
commented
11 years ago In progress
Closed enasni closed 11 years ago
CKinWoodstock
commented
11 years ago In progress
CKinWoodstock
commented
11 years ago enasni:
You have been awarded one bug bounty point for finding this issue.
The only requirement for a password is that it be 6 characters in length. Being designed as a web-facing entity you might want to implement stronger password requirements.
Ruby module exist for this already , for example: http://raa.ruby-lang.org/project/ruby-password/