Verified that I was able to create an account with 'password' as the password. Perhaps a password meter and a basic set of rules to disallow extremely easy passwords.
Agreed. In the area of security, NodeBB still has a ways to go, but the project is still young, so there's room and time for adding features like that.
At some point I'm going to want to implement 2-step verification as well. I hope someone else get's a system for that working before I fail at attempting it.
Well, give it a shot. If you don't succeed, maybe somebody else will step in and give you a hand.
@planner already found notp and I will look into it, it's a pretty low priority for me at the minute though.
Last weekend, I found notp as well 
I wanted to implement a two-factor auth with G Authenticator, although I didn't end up having the time to do so. Definitely go for it! 
Planner the project manager
Geez, how did you know that's my specialty? :wink2:
