I logged in as Administrator then clicked on Member Center and found the menu to change my password. I entered my password and verified it in the 2nd field, then it logged me out when I clicked save. Strange. Then I tried logging in with my new password but after several attempts it locked me out (I had set that preference to prevent hackers). Then when I got the email from E-Blah regarding my password change, I noticed it had only accepted 8 characters in my password (my password entered on the site was 9)....it would have been nice it if just used the first 8 I entered to authenticate me rather than lock me out.

I'm sure this could be a problem if other users did the same thing as me...

Thoughts?

Did you try using just the 8-characters?

Passwords should really be encrypted with MD5 encryption, in Admin Center.

Ok, I read the help text that said if MD5 encryption is not used, that perl's crypt() would limit password length to 8. I've changed to use MD5 encryption so I should be safe now.

dferrero,
You are not the only one. Same happened to me.
A warning would be nice.

How do I change to MD5 encryption, whatever this is (I understand why it would be safer, though)

Johannes

Admin/Encrypt Passwords.