Hi,

I am noticing some activities in my forum from a person. What I have seen is he is hacking those password which is set to weak and couldn't hack strong password.

What I wanted to know, how come he is hacking the weak password if my site is not being hacked? how can I diagnose this thing?

Also what is the strong password length?

Kindly help thanks

tell your uses to users this http://strongpasswordgenerator.com

What I would do is install this mod, which will require your members to use stronger passwords, Minimum Password Length (https://vborg.vbsupport.ru/showthread.php?t=264515)

Then follow the instructions here, to force users to reset their passwords, Force Password Reset (https://vborg.vbsupport.ru/showthread.php?t=303731)

AdminCP>Users>Check Vulnerable Passwords

Will at least catch all accounts that may have same password as username.

What I would do is install this mod, which will require your members to use stronger passwords, Minimum Password Length (https://vborg.vbsupport.ru/showthread.php?t=264515)

Then follow the instructions here, to force users to reset their passwords, Force Password Reset (https://vborg.vbsupport.ru/showthread.php?t=303731)

Thanks One question is

UPDATE `usergroup` SET `passwordexpires` = '730' WHERE `usergroup`.`usergroupid` !=6;

how to run this query in ACP ?

ACP --> Maintenance --> Execute SQL Query

Make sure your userid is set to be able to run queries via the config file.

// ****** USERS WITH QUERY RUNNING PERMISSIONS ******
// The users specified here will be allowed to run queries from the control panel.
// See the above entries for more information on the format.
// Please note that the ability to run queries is quite powerful. You may wish
// to remove all user IDs from this list for security reasons.
$config['SpecialUsers']['canrunqueries'] = 'X';