Add check for pwndpasswords

iotaledger / trinity-wallet

Trinity is IOTA's old, deprecated wallet. Use Firefly instead.

https://trinity.iota.org

Other

470 stars 120 forks source link

Add check for pwndpasswords #2631

Closed lambtho12 closed 4 years ago

lambtho12 commented 4 years ago

Description

When creating/modifying Trinity password or a seedvault password, Trinity could check if the password is already present in known data breaches thanks to haveibeenpwned.com API for pwned passwords.

Motivation

This feature could greatly improve password quality and better protect user funds.

Requirements

Add checks for pwned password everytime a password needs to be created/modified (Trinity, seedVault)

Am I planning to do it myself with a PR?

No.

cvarley100 commented 4 years ago

This is a good idea for a future wallet version. We are not currently planning these sorts of updates in the current Trinity atm.