GNOME Bugzilla – Bug 647849
Unable to use long passwords
Last modified: 2018-06-16 13:36:35 UTC
I am unable to use long passwords (26 characters) with bugzilla. even though the password reset page doesn't show any error, the login fails. even with a short password I'm unable to login to "landfill"
How is landfill related to GNOME Bugzilla?
(In reply to comment #1) > How is landfill related to GNOME Bugzilla? let me make myself clear, iam unable to use very long passwords in Gnome bugzilla, and i cannot login to landfill using my existing username and password. they are seperate issues.
GNOME has no Landfill. Plus "existing username and password" for **what exactly**? Plus how many passwords did you try with that length? 18 char passwords work fine for me...
(In reply to comment #3) > GNOME has no Landfill. sorry I mistook bugzilla's landfill as that of gnomes (had the same appearance) > Plus "existing user name and password" for **what exactly**? user name and password of gnome bugzilla (https://bugzilla.gnome.org/) > Plus how many passwords did you try with that length? > 18 char passwords work fine for me... i tried two passwords one with 26 characters and another one with 36 characters, the password that i am using right now is less than 20 chars long. it should have warned me that long passwords are not allowed instead of accepting it blindly.
*** Bug 651019 has been marked as a duplicate of this bug. ***
*** Bug 652573 has been marked as a duplicate of this bug. ***
*** Bug 652894 has been marked as a duplicate of this bug. ***
*** Bug 661508 has been marked as a duplicate of this bug. ***
I marked it as duplicate, but in my opinion the bug isn't so much that it doesn't allow 36 character passwords (that's kind of ridiculous), but that the password reset settings don't enforce the same limits as the registration page (which fails with a cryptic message suggesting you typed it in wrong which is frustration and difficult to discover the true error).
I believe this is rather an upstream Bugzilla issue !?
*** Bug 673217 has been marked as a duplicate of this bug. ***
*** Bug 675190 has been marked as a duplicate of this bug. ***
*** Bug 691458 has been marked as a duplicate of this bug. ***
*** Bug 693867 has been marked as a duplicate of this bug. ***
This issue is fixed with upstream Bugzilla 3.6 see https://bugzilla.mozilla.org/show_bug.cgi?id=471620 However, our installation still runs 3.4 We are struggling to find manpower to perform an upgrade which does make sense bug 694344
*** Bug 700313 has been marked as a duplicate of this bug. ***
*** Bug 707732 has been marked as a duplicate of this bug. ***
Perhaps related, I was able to type a long password (> 16 chars)... but due to the maxlength limitation on the password field (in the Password forgotten page) the actual submitted password was <= 16 chars. This was quite unexpected as the login bar on top, and the login page on the enter_bug page both do not have a limit of 16 chars. Please remove the maximum of 16 characters or warn at least when the limit was reached.
*** Bug 720971 has been marked as a duplicate of this bug. ***
*** Bug 726720 has been marked as a duplicate of this bug. ***
*** Bug 734939 has been marked as a duplicate of this bug. ***
*** Bug 742038 has been marked as a duplicate of this bug. ***
The comments about 16 and 32 letter password issues don't seem to match my experience. I set a 53 letter password no problems, but using that password is a problem because the password field when logging on doesn't allow pasting. If I type the password it does work fine. So given loads of things have been marked as duplicates of this I expect the one I was about to create might be do, that is to say... "The password field on the login doesn't allow pasting." Otherwise my long password seems to be fine. (Before someone says a 53 letter password is ridiculous - it's generated with diceware, as built into keepassx.)
After https://wiki.gnome.org/Initiatives/DevelopmentInfrastructure , GNOME is moving its task tracking from Bugzilla to GitLab at https://gitlab.gnome.org/ as previously announced in https://mail.gnome.org/archives/desktop-devel-list/2018-May/msg00026.html . See https://wiki.gnome.org/GitLab for more information. Hence closing this ticket as WONTFIX: There are no plans to work on Bugzilla.