SourceForge.net Password Reset Required

Greetings,

To make sure we’re following current best practices for security, we’ve made some changes to how we’re storing user passwords. As a result, the next time you go to login to your SourceForge.net account, you will be prompted to change your password. Once this is done, your password will be stored more securely. We recommend that you do this at your earliest convenience by visiting the SourceForge website and logging in.

And, as always, be vigilant about password security. Use a secure password, never include your password in an email, and don’t click on links for unsolicited password resets.

If you have any concerns about this, please contact SourceForge support at sfnet_ops@slashdotmedia.com

Best regards,
SourceForge Team

11 Responses to “SourceForge.net Password Reset Required”

  1. Dave Connet May 21, 2014 at 4:30 pm #

    Did that – entered a password with 10 chars. Denied. 11 chars. Denied. 14 chars worked. The new password verification seems broken (done in FF29.0.1). (It said 10 char min)

  2. Carl B May 21, 2014 at 5:07 pm #

    I reset my password via e-mail, then said “why am I not using Open ID here, I’m clearly signed into google.” So I logged in to SF (new password), went to attach my Google account as an open ID, and it would not accept my new password. I changed my SF password (using my new password and confirming my now new-new password). Still no dice. Guess it’s just broken.

  3. Yorgii May 22, 2014 at 1:15 pm #

    10 characters minimum?  I’ve seen some draconian password requirements in my time but I have never seen 10 characters minimum for an online site.  Why does SourceForge think they need more security than online banking?

  4. danielrichardgrayson May 22, 2014 at 1:36 pm #

    How were they stored before?

Trackbacks/Pingbacks

  1. SourceForge’s turn to reset passwords – this time in a good cause! | ste williams - May 22, 2014

    […] Hot on the heels of eBay’s password problems comes yet another password reset notification. […]

  2. Better safe than sorry: SourceForge pushes password reset | ste williams - May 22, 2014

    […] made some changes to how we’re storing user passwords,” administrators said in a blog post announcing the […]

  3. Bacon Leaves Canonical, Red Hat Chief, and Witcher 2 on Sale | PHP World - May 23, 2014

    […] changes on users despite no breach or apparent threat. The Reg quotes Sourceforge spokesman saying, "To make sure we’re following current best practices for security, we’ve made […]

  4. SourceForge’s turn to reset passwords | ste williams - May 23, 2014

    […] Hot on the heels of eBay’s password problems comes yet another password reset notification. […]

  5. 2014/05/24 Weekly Tech Headlines | 404 Tech Support - May 24, 2014

    […] SourceForge.net is asking all users to reset their passwords, not because they have been breached but because they are updating their security standards to keep up with the time. […]

  6. SourceForge asks all users to change password - May 24, 2014

    […] want to consider changing your password. The repository for software projects announced on their blog that the company made some changes in how it is storing user passwords, and prompts every user to […]

  7. SourceForge pousse la réinitialisation de votre mot de passe | BlogNT - May 26, 2014

    […] quelques modifications à la façon de stocker les mots de passe des utilisateurs », déclarent les administrateurs sur un billet de blog annonçant le changement. Par conséquent, la prochaine […]