Arch Linux

Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!
Tasklist

FS#34203 - bugs.archlinux.org does not work with passwords containing special (§$%&/ etc) characters

Attached to Project: Arch Linux
Opened by Hawky (p90) - Thursday, 07 March 2013, 16:35 GMT
Last edited by Dave Reisner (falconindy) - Sunday, 17 March 2013, 13:28 GMT
Task Type Bug Report
Category Web Sites
Status Closed
Assigned To No-one
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Description:
Hi,

creating my account I noticed something strange.
I always create a unique 100char long password, containing 1-9, a-z, A-Z and Special characters by using the LastPass Addon in Firefox. I created my account, set the password, page says the password is updated but on login, the password is incorrect.
At first I thought it is due to length (some libs only use the first x characters etc) so I tried a 72 char long (I know some configs which have the limit at 73), still the same problem. Tried 20 characters, same problem.
After that I removed the special characters and it instantly started working.
Conclusion:
o4C*aY0nC$ix#QxAb*Uz -> does not work as a password
ViR25jcZeKp9NTMWS9J1 -> does work as a password
(neither are actual passwords but I tried both in the last hour)

Steps to reproduce:
Change your password for bugs.archlinux.org to o4C*aY0nC$ix#QxAb*Uz or similar
Try to login

This task depends upon

Closed by  Dave Reisner (falconindy)
Sunday, 17 March 2013, 13:28 GMT
Reason for closing:  Not a bug
Comment by Kevin (anonymous_user) - Thursday, 07 March 2013, 17:50 GMT
I cannot confirm this. My password contains special characters and it works fine. I even changed it and I'm still able to login.

Have you tried clearing cookies for bugs.archlinux.org and cache?
Comment by Hawky (p90) - Thursday, 07 March 2013, 20:08 GMT
This is very strange.
After your reply I started over freshly, used firefox to generate me a list of passwords, stored them into a textfile, closed firefox and exclusively used midori for test (before I used midori and firefox at the same time).

My first thought was that maybe goes wrong in the clipboard altering the password and therefore refusing access. So I thought "Get some string which works and just use it multiple times until it does not work anymore"

This is the result:
8wP@FLYn%ex9uYvjAj7c -> works
8wP@FLYn%ex9uYvjAj7c8wP@FLYn%ex9uYvjAj7c -> Does not work....
8wP@FLYn%ex9uYvjAj7c8wP@FLY -> Work
8wP@FLYn%ex9uYvjAj7c8wP@FLYn%e -> Works...
8wP@FLYn%ex9uYvjAj7c8wP@FLYn%ex -> Does not work....

try:
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaa -> works (30a)

aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa -> does not work (31a)

Strange, maybe some other problem?
close all, delete cookies etc, use lost pw dialog -> set to bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb -> cannot login...

So can you try and see if there is a problem with length?

I will now take a look why the password in my initial request now works while it did not work before. Maybe there is really something strange going on with passing a password over the clipboard into midori and firefox.






Comment by Kevin (anonymous_user) - Thursday, 07 March 2013, 22:30 GMT
I just tried a 40 char password generated by lastpass and it works. I also tried your example of:

8wP@FLYn%ex9uYvjAj7c8wP@FLYn%ex

And it works too.
Comment by Hawky (p90) - Wednesday, 13 March 2013, 08:25 GMT
This is really strange.
I now tried it with midori on linux and Firefox on Windows yet I have the problem that sometimes (not sure if it is only length or something else, if you say a 40 char long works for you it must be something else) my password does not work after a password change.

Loading...