[Bug] Password Strength shown is wrong

rclp
rclp
Community Member
edited September 2022 in Mac

I moved to 1Password 8 (Mac), and the Watchtower score is a good incentive to revisit and improve my old passwords. So I went ahead and did just that. That's when I started noticing some inconsistencies.

For example, I have an item with a 10-character password (max the website accepts) that's shown as Excellent. I thought it was weird, since I had 20-character long passwords that were just "Very Good". So I copy-pasted this password into another item and... "Fair"?!

So, back to the original item. I thought maybe the username was also being taken into account (since it's a numeric username), so I switched it for my usual username, but the password still stayed as Excellent. I thought maybe there was a bug with this item, so I duplicated it, but the duplicated item also showed Excellent. Finally, I just went to Add Item > Login, copy-pasted the username, password and website (there's nothing more in the original item), named the item exactly the same, and the new item shows the password as Fair. There is absolutely no difference between the too, but one is Excellent, the other is Fair.

This is not the only item in my list with this issue.

Anyone knows what's going on? Known bug or something else?

Edit: I checked my Chrome extension and 1Password 8 Android app, they all show this password as Excellent.

1Password Version: 8.8.0
Extension Version: Not Provided
OS Version: macOS 12.5.1
Browser:_ Not Provided

Comments

  • Unknown
    Unknown
    This content has been removed.
  • Jack.P_1P
    Jack.P_1P

    Hi @rclp:

    Thanks for bringing this up. The short version is that when 1Password generates the password, it is able to save some details about the password generation process in the item. If that password is then copied and pasted into a new item, 1Password no longer has the information about the password generation process, so the rating for the password may not be exactly accurate.

    Jack

  • rclp
    rclp
    Community Member

    Hi @Jack.P_1P

    Thanks for the info. That's a good feature (in principle), given some websites simply don't allow us to use good passwords and it's kinda annoying having watchtower show them as fair or weak when they're already the best we may use. But having them use hidden metadata isn't great, as it's very confusing and very limited in usability (e.g. I have some terrible/weak passwords that are already the best I may use, yet this functionality didn't activate for them).

This discussion has been closed.