Jump to navigation Jump to search
Other languages:
English • ‎italiano • ‎magyar • ‎中文 • ‎日本語
User accounts, authentication: $wgMaximalPasswordLength
Specifies the maximal length of a user password.
Introduced in version:1.24.0 (Gerrit change 201220; git #63cf33d8)
Deprecated in version:1.26.0 (Gerrit change 206156; git #1a20dc93)
Removed in version:still in use
Allowed values:(nonnegative integer)
Default value:4096


Specifies the maximal length of a user password.

It is not recommended to make this greater than the default, as it can allow DoS attacks by users setting really long passwords. In addition, this should not be lowered too much, as it enforces weak passwords.

Warning Warning: Unlike other password settings, user with passwords greater than the maximum will not be able to log in.

Since 1.26 deprecated in favor of $wgPasswordPolicy .

See also[edit]