Change Your Magento Admin Password Length

Published
/
Updated
/
From

Your admin panel is home to tons of sensitive information—not something you want to expose to attackers.

Unfortunately, if you have a lot of admin users, chances are at least some of them are picking insecure, easy to crack passwords. Insecure passwords are particularly vulnerable to brute force attacks, where attackers can guess hundreds of thousands of password combinations in an hour.

The good news is that increasing password length greatly increases the time required to crack passwords. Better than just knowing that fact is enforcing it, which, thanks to our most recent release, you can now do on your Magento store.

We’ve open sourced our Magento Admin Password Length Enforcer extension that allows you to customize the minimum required length of admin passwords. Check out the most recent version of the code off GitHub.

Installing the Magento Admin Password Length Enforcer

Always test new extensions in a development environment before you deploy them to a production server.

Update: The extension is on Magento Connect now, so you can install it there too!

  1. Download the release file
  2. Upload it to your base Magento install folder
  3. Run the following command (replacing X.X.X with your version number): tar zxf BranchLabs_AdminPasswordStrength-X.X.X.tgz
  4. Navigate to System > Configuration and look for the BranchLabs header in the menu to the right and select Admin Password Strength to set the new minimum password length.
  5. Get your admins to change their current passwords and enjoy your enhanced security!

Questions & Comments?

Have comments on the extension? Further questions about Magento best practices for security? Leave us a comment here, or get in touch with us directly and we’ll get back to you ASAP.

Related articles

Generate More Inbound Leads with Search Data
Use search data to improve your sales and marketing efforts.
Read this article
Turning Your Product Finder Into Your Best Salesperson
The right product finder design helps turn browsers into buyers.
Read this article
11 ways to secure your Magento store against hackers
How can you really ensure the safety of your eCommerce site?
Read this article

Work With Us

We help marketing teams build eCommerce sites that grow.
Find out how.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.