when warning about weak passwords, mention that passwords reused at other services in particular

based on issue #286
This commit is contained in:
Mechiel Lukkien
2025-02-15 11:48:10 +01:00
parent 46c1693ee9
commit 09975a3100
5 changed files with 9 additions and 8 deletions

View File

@ -2256,7 +2256,7 @@ const account = async (name) => {
}
password.type = 'text';
password.value = s;
}), dom.div(dom._class('text'), box(yellow, 'Important: Bots will try to bruteforce your password. Connections with failed authentication attempts will be rate limited but attackers WILL find weak passwords. If your account is compromised, spammers are likely to abuse your system, spamming your address and the wider internet in your name. So please pick a random, unguessable password, preferrably at least 12 characters.'))), async function submit(e) {
}), dom.div(dom._class('text'), box(yellow, 'Important: Bots will try to bruteforce your password. Connections with failed authentication attempts will be rate limited but attackers WILL find passwords reused at other services and weak passwords. If your account is compromised, spammers are likely to abuse your system, spamming your address and the wider internet in your name. So please pick a random, unguessable password, preferrably at least 12 characters.'))), async function submit(e) {
e.stopPropagation();
e.preventDefault();
await check(fieldsetPassword, client.SetPassword(name, password.value));