-
Whats the bounty for finding bugs?
Is it more or less than facebooks?
https://www.facebook.com/notes/facebook-security/an-update-on-our-bug-bounty-program/10151508163265766Passwords must be 8–80 characters long = srsly?
Why eight? -
Whats the bounty for finding bugs?
Is it more or less than facebooks?
https://www.facebook.com/notes/facebook-security/an-update-on-our-bug-bounty-program/10151508163265766Passwords must be 8–80 characters long = srsly?
Why eight?8 is the threshold below which passwords are too trivial to crack no matter how complex you make them.
-
Log in confirmation email got sent to spamm folder. Not sure why as other log in confirmations haven't.
Now I've logged in (after it said "your email address is new to us"), it has picked up my username - is this because I purchased it ages ago and it has connected my email address with the reserved username?
-
How long does a six character password (which used to be the standard) using a dictionary of a-z take to bruteforce over an eight character?
The problem is some sites require a password of a six character length but with a larger dictionary including special characters / upper and lower case and then other sites deciding it should be eight characters but with no complexity.
I guess the solution is for me to make my password eight characters in length including special character = Password123@
But given moores law how long until eight characters isnt long enough?
-
Do we need to have a github account to submit issues?
-
This being "optimized" is a crime against short sighted.
-
looks good!
ignore minor cosmetic stuff?Nah, give us every single papercut.
Some of them may be dupes of things we are already tracking (such as the huddles "New" not being correct and checkboxes from the inline admin controls appearing on the Microcosm list), but it's better to have duplicates rather than not to know about stuff that as we haven't spotted them.
-
How long does a six character password (which used to be the standard) using a dictionary of a-z take to bruteforce over an eight character?
The problem is some sites require a password of a six character length but with a larger dictionary including special characters / upper and lower case and then other sites deciding it should be eight characters but with no complexity.
I guess the solution is for me to make my password eight characters in length including special character = Password123@
But given moores law how long until eight characters isnt long enough?
-
How long does a six character password (which used to be the standard) using a dictionary of a-z take to bruteforce over an eight character?
The problem is some sites require a password of a six character length but with a larger dictionary including special characters / upper and lower case and then other sites deciding it should be eight characters but with no complexity.
I guess the solution is for me to make my password eight characters in length including special character = Password123@
But given moores law how long until eight characters isnt long enough?
Quite a while. Every extra character introduces more entropy and makes it significantly harder to crack.
8 chars is still fairly weak, but with special chars may be OK.
Above 12 chars is better, above 20 chars is best.
I happen to use 67 chars, but then I'm weird.
We actually use a Mozilla project called Persona for login as they have dedicated security people building it. If you have any issues with the login mechanism including the password length, their issue tracker is here:
https://github.com/mozilla/persona/issuesThis being "optimized" is a crime against short sighted.
Erm, not sure what you mean.
-
Question leading to bug...
First page, replies are numbered #1...#25
Second page, replies are numbered #1...#25Feature or bug?
-
^^ Too small to read.
-
Question leading to bug...
First page, replies are numbered #1...#25
Second page, replies are numbered #1...#25Feature or bug?
Bug
-
^^ Too small to read.
The font is too small to read on http://test.lfgss.com/ ?
All fonts?
Just some of the fonts on some pages?And if you press CTRL+0 and reset the browser font size, is it still too small?
What browser and OS are you using?
The fonts are pretty large.
-
Iphone islington cc microcosm and old lfgss I can make larger fonds on touchscreen bur not test lfgss.
-
^ was just thinking the same
deleted
hippy
LongAndWinding
mands
fussballclub
bothwell
danb
prevailrob
dbr-
Post a reply
About
Testers needed over at test.lfgss.com
Posted by
@Velocio
This is very much a work in progress, meaning it's literally being worked on this week.
http://test.lfgss.com/
I'm looking for the papercuts, the little things that are broken and make this a slightly less intuitive or less elegant solution. They're called papercuts because whilst small and unlikely to really hurt you, they are annoyances that add up and many of them will mean that you wouldn't use it.
A great example of a paper cut bug report ( a real one I'm about to submit ):
What you experienced:
When you start a conversation in a Microcosm and are in the comment field, I tabbed once and hit enter as elsewhere with comments that would create the comment, it did not.
What you expected:
In the comment field on start conversation, hitting tab once and hitting enter should create the conversation.
Suggestion:
Change the tab order on the start conversation form.
Please use the test forum as much as possible in the next 2 weeks and submit any issues and papercuts to the github issue list:
https://github.com/microcosm-cc/microweb/issues
It is the github issue list that we will be working through and watching.