[jitsi-users] Suddenly unable to log in - password not valid


#1

Something changed in the XMPP service. It started yesterday. When I and
a few on my contacts try to log in to Jitsi we now get this message:

"Authentication failed for *username*@jit.si (Jabber). The password you
entered is not valid."

But the password IS valid! I can absolutely guarantee that the password
I enter is the exact same as in the past. Why? Because I always use a
password manager to copy and paste the password.

One of my contacts has Jitsi set to remember his password, so he does
not type in his password at all. And yet he started to get the exact
same message yesterday. He also uses XMPP.

----- How to recreate -----
1. Create a new XMPP user for the test.
2. Choose a 63 character password (tip: Some special characters should
be avoided as they will make the process fail with the error message
"null"). You could copy one from here:
www.grc.com/passwords.htm
3. Try to log in.

I used Windows 7 while recreating the issue via the above steps.

I know that a 63 character password is not really needed, but it worked
until yesterday. And if passwords are hashed it should not be a problem.
But we are now several users who can no longer use Jitsi as we cannot
log in. And there are no password recovery options for us. We also
cannot change our password. Since the issue happened at the same time I
can only guess that this must be caused by some XMPP server changes.

Is anyone else experiencing this?
Is anyone else able to recreate the issue?
Is it a known issue that will get fixed in the foreseeable future?

I truly appreciate the hard work that is being put into Jitsi and I hope
this issue will get solved soon so we can continue using Jitsi.


#2

I logged into my account today but the password is less than
63characters. What occurs if you create a new account with fewer
characters?

···

On Sep 3, 2013 1:37 PM, "PrivacyDefence" <webmaster@privacydefence.org> wrote:

Something changed in the XMPP service. It started yesterday. When I and
a few on my contacts try to log in to Jitsi we now get this message:

"Authentication failed for *username*@jit.si (Jabber). The password you
entered is not valid."

But the password IS valid! I can absolutely guarantee that the password
I enter is the exact same as in the past. Why? Because I always use a
password manager to copy and paste the password.

One of my contacts has Jitsi set to remember his password, so he does
not type in his password at all. And yet he started to get the exact
same message yesterday. He also uses XMPP.

----- How to recreate -----
1. Create a new XMPP user for the test.
2. Choose a 63 character password (tip: Some special characters should
be avoided as they will make the process fail with the error message
"null"). You could copy one from here:
www.grc.com/passwords.htm
3. Try to log in.

I used Windows 7 while recreating the issue via the above steps.

I know that a 63 character password is not really needed, but it worked
until yesterday. And if passwords are hashed it should not be a problem.
But we are now several users who can no longer use Jitsi as we cannot
log in. And there are no password recovery options for us. We also
cannot change our password. Since the issue happened at the same time I
can only guess that this must be caused by some XMPP server changes.

Is anyone else experiencing this?
Is anyone else able to recreate the issue?
Is it a known issue that will get fixed in the foreseeable future?

I truly appreciate the hard work that is being put into Jitsi and I hope
this issue will get solved soon so we can continue using Jitsi.

_______________________________________________
users mailing list
users@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/users


#3

Thank you for your feedback. A new account with fewer characters will
work. But I would of course prefer to get my own account back and I'm
sure my contacts would too, instead of starting over.

Have you tried to recreate the issue with a 63 character password? I did
again today from another computer and from another network (so as to
rule out any local issues) and still the same issue. I still cannot log
in to my XMPP account when using Jitsi.

I have also tried to log in using Pidgin. Also not possible. Again an
indication that something happened to the XMPP/Japper provider a few
days ago.

A bit frustrating, especially since I am not sure if anyone is aware of
the issue and trying to fix it. Should I just wait and hope it fixes
itself? I don't see any other options at the moment.

···

On 04-09-2013 04:16, Jungle Boogie wrote:

I logged into my account today but the password is less than
63characters. What occurs if you create a new account with fewer
characters?
On Sep 3, 2013 1:37 PM, "PrivacyDefence" <webmaster@privacydefence.org> > wrote:

Something changed in the XMPP service. It started yesterday. When I and
a few on my contacts try to log in to Jitsi we now get this message:

"Authentication failed for *username*@jit.si (Jabber). The password you
entered is not valid."

But the password IS valid! I can absolutely guarantee that the password
I enter is the exact same as in the past. Why? Because I always use a
password manager to copy and paste the password.

One of my contacts has Jitsi set to remember his password, so he does
not type in his password at all. And yet he started to get the exact
same message yesterday. He also uses XMPP.

----- How to recreate -----
1. Create a new XMPP user for the test.
2. Choose a 63 character password (tip: Some special characters should
be avoided as they will make the process fail with the error message
"null"). You could copy one from here:
www.grc.com/passwords.htm
3. Try to log in.

I used Windows 7 while recreating the issue via the above steps.

I know that a 63 character password is not really needed, but it worked
until yesterday. And if passwords are hashed it should not be a problem.
But we are now several users who can no longer use Jitsi as we cannot
log in. And there are no password recovery options for us. We also
cannot change our password. Since the issue happened at the same time I
can only guess that this must be caused by some XMPP server changes.

Is anyone else experiencing this?
Is anyone else able to recreate the issue?
Is it a known issue that will get fixed in the foreseeable future?

I truly appreciate the hard work that is being put into Jitsi and I hope
this issue will get solved soon so we can continue using Jitsi.

_______________________________________________
users mailing list
users@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/users

_______________________________________________
users mailing list
users@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/users


#4

I can now log in to Jitsi. I tried to remove the last characters in my
password one by one. When my password was reduced from 63 characters to
56, I was logged in.

···

On 04-09-2013 22:19, PrivacyDefence wrote:

Thank you for your feedback. A new account with fewer characters will
work. But I would of course prefer to get my own account back and I'm
sure my contacts would too, instead of starting over.

Have you tried to recreate the issue with a 63 character password? I did
again today from another computer and from another network (so as to
rule out any local issues) and still the same issue. I still cannot log
in to my XMPP account when using Jitsi.

I have also tried to log in using Pidgin. Also not possible. Again an
indication that something happened to the XMPP/Japper provider a few
days ago.

A bit frustrating, especially since I am not sure if anyone is aware of
the issue and trying to fix it. Should I just wait and hope it fixes
itself? I don't see any other options at the moment.

On 04-09-2013 04:16, Jungle Boogie wrote:

I logged into my account today but the password is less than
63characters. What occurs if you create a new account with fewer
characters?
On Sep 3, 2013 1:37 PM, "PrivacyDefence" <webmaster@privacydefence.org> >> wrote:

Something changed in the XMPP service. It started yesterday. When I and
a few on my contacts try to log in to Jitsi we now get this message:

"Authentication failed for *username*@jit.si (Jabber). The password you
entered is not valid."

But the password IS valid! I can absolutely guarantee that the password
I enter is the exact same as in the past. Why? Because I always use a
password manager to copy and paste the password.

One of my contacts has Jitsi set to remember his password, so he does
not type in his password at all. And yet he started to get the exact
same message yesterday. He also uses XMPP.

----- How to recreate -----
1. Create a new XMPP user for the test.
2. Choose a 63 character password (tip: Some special characters should
be avoided as they will make the process fail with the error message
"null"). You could copy one from here:
www.grc.com/passwords.htm
3. Try to log in.

I used Windows 7 while recreating the issue via the above steps.

I know that a 63 character password is not really needed, but it worked
until yesterday. And if passwords are hashed it should not be a problem.
But we are now several users who can no longer use Jitsi as we cannot
log in. And there are no password recovery options for us. We also
cannot change our password. Since the issue happened at the same time I
can only guess that this must be caused by some XMPP server changes.

Is anyone else experiencing this?
Is anyone else able to recreate the issue?
Is it a known issue that will get fixed in the foreseeable future?

I truly appreciate the hard work that is being put into Jitsi and I hope
this issue will get solved soon so we can continue using Jitsi.

_______________________________________________
users mailing list
users@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/users

_______________________________________________
users mailing list
users@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/users

_______________________________________________
users mailing list
users@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/users