You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Upon signing up on the OWTF web interface, the password used (32 characters generated from a password manager with all possible characters) should be marked as secure and should allow me to create an account.
Current Behavior
I am essentially locked out of the site since any and all passwords (even if they logically fit the requirements to be deemed "secure") are denied and marked as "not secure".
For context, the generated passwords look like this: v5h^L7Qt%%^6x%ik62z7U$66uX62#&ys7^&@b!
Possible Solution
Unknown; I've tried manually going into the postgres database and creating an entry manually to bypass the register page. However, I'm unaware of the exact hashing algorithm used, and the "reset password" functionality probably would result in the same "insecure password" issue.
Steps to Reproduce (for bugs)
Ignore the "invalid email" thing at the start, I changed it later on in the screenshots and the email issue appears unrelated to the password issue
Logs
The 'Invalid Salt' error might be due to my attempt at manually going into the PSQL database and adding an entry for myself manually. Though I'm not sure if it's on my end or if it is on the server code end. ui_server.log
Your Environment
Installation method used: Docker-Compose
Version/branch used: 2.5.0
Operating System and version (like Kali, Debian, ArchLinux, etc): Kali docker container inside Parrot OS.
pip/setuptools version: Python3.9; Pip 20.3.4
sudo access: Am able to use root.
The text was updated successfully, but these errors were encountered:
Expected Behavior
Upon signing up on the OWTF web interface, the password used (32 characters generated from a password manager with all possible characters) should be marked as secure and should allow me to create an account.
Current Behavior
I am essentially locked out of the site since any and all passwords (even if they logically fit the requirements to be deemed "secure") are denied and marked as "not secure".
For context, the generated passwords look like this: v5h^L7Qt%%^6x%ik62z7U$66uX62#&ys7^&@b!
Possible Solution
Unknown; I've tried manually going into the postgres database and creating an entry manually to bypass the register page. However, I'm unaware of the exact hashing algorithm used, and the "reset password" functionality probably would result in the same "insecure password" issue.
Steps to Reproduce (for bugs)
Ignore the "invalid email" thing at the start, I changed it later on in the screenshots and the email issue appears unrelated to the password issue
Logs
The 'Invalid Salt' error might be due to my attempt at manually going into the PSQL database and adding an entry for myself manually. Though I'm not sure if it's on my end or if it is on the server code end.
ui_server.log
Your Environment
The text was updated successfully, but these errors were encountered: