Quote:
|
Originally Posted by random
This is a part of security improvements introduced in 4.5.5.
"Weak" passwords are not suitable for admin/provider accounts now
|
Vladimir,
There is a basic flaw in your argument:
- the admin password shouldn't even MATTER to an xcart admin. It may as well be "password" - why? Because any store that actually wants to have a secure admin is also going to use at least 2 other modes of admin security:
1. https password
2. IP restriction
Once you have #1 and #2 in place, the admin password is kinda irrelevant.
Was there a sudden demand from xcart customers for this change?
Was there a need for this because weak passwords were compromising xcart stores?
My daughter does this kind of stuff when she doesn't want to clean her room. She'll do every possible thing except clean her freaking room.
We need x-cart engineering to squash bugs. We do not need new features. Please?