Open coolcat-creations opened 1 year ago
A max character limit wouldn't work thanks to utilities like bit.ly.
That's right but an URL filter would make sense and additional length limit to prohibit long text in those fields
username is already limited to 30 characters
See closed PR #20142 for discussion.
It's a serious security issue for me :-( please bring the PR back @laoneo @GeraintEdwards
username is already limited to 30 characters
But name isn't- I have lots of russian spam there
As stated by @laoneo in the other PR there are extensions available. I just quickly tested one that was the first match on the JED and it worked fine https://github.com/Spudley/plg_user_restrictusername
Security should be a core setting :-(
This isnt security.
Is your feature request related to a problem? Please describe.
Despite Captcha on, I get User registrations with valid emails but with scam in the username so that the valid email gets a spam mail from my Website.
Describe the solution you'd like
I would like to have an option to shorten the name and Username to max. 20 characters (or any custom value) and to add a blacklist for those fields and disallow any URLs in there.