Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-1204

Security and validation of email & passwords

    XMLWordPrintable

Details

    • We collect Jira feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      • Lock people out after X incorrect logins is a way to prevent brute force attacks on passwords
      • Use a dictionary to prevent insecure passwords
      • Validate email addresses (similar to how they do it in scarab), by checking the MX records for validity.

      Attachments

        Issue Links

          is caused by

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-18557 Out of memory error

          • Medium - Medium priority issues
          • Closed
          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. JRASERVER-6175 Passwords sent as clear text in email

          • Medium - Medium priority issues
          • Closed

          Suggestion - JRASERVER-15605 The use of existing CAPTCHA after a certain number of unsuccessful login attempts

          • Closed

          Suggestion - JRASERVER-2740 Rules Governing Passwords - Password Policy

          • Not Being Considered
          relates to

          Suggestion - JRASERVER-2740 Rules Governing Passwords - Password Policy

          • Not Being Considered

          Activity

            People

              Unassigned Unassigned
              scott@atlassian.com Scott Farquhar
              Votes:
              5 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: