7 Messages
31-character WiFi password limit is absurd
After three years on a base station running 1.x firmware (the unit would not receive firmware updates), I finally switched over to a new base station running 2.3.10, and out of the blue the new unit won't connect to WiFi using the same password literally dozens of devices in my home connect with because it is longer than 31 characters. The old firmware had no problem with the long password, and now all these "Wi-Fi security improvements' that have shipped in the 2.x revisions means I have to make the password I use for my network less secure.
Really, really disappointing.
And to make matters even more confusing, the cameras in the system will still accept passwords over 31 characters.
Simplisafe, please fix this. A security product should not require less-secure passwords.
Really, really disappointing.
And to make matters even more confusing, the cameras in the system will still accept passwords over 31 characters.
Simplisafe, please fix this. A security product should not require less-secure passwords.
davey_d
Community Admin
•
5.6K Messages
3 years ago
The current limit for both SSID and Password is still 32 characters (it's a firmware limitation in the Base Station). But the limit was actually even fewer in previous firmware versions. If the same password had previously been accepted, there might be something else going on.
If by cameras, you mean the Indoor Camera or the Video Doorbell Pro, those use a QR code method for entering a password. So they are limited by how many characters can fit in the QR code.
- Davey D.
Community Development Manager
SimpliSafe Home Security
0
0
dannydb
7 Messages
3 years ago
If that's the case, then why am I reading a validation error message in the iOS app base station Wi-Fi screen that says "The password must have between 8 and 31 characters.'
32+ character passwords are not possible in the iOS app form input, and are rejected as "incorrect' from the keypad. 31 character passwords work.
Regarding the camera passwords, you can change the Wi-Fi network through the iOS app and that password input still accepts 32 characters.
0
0
davey_d
Community Admin
•
5.6K Messages
3 years ago
Apologies, just double-checked with our engineering team. Turns out the limit is actually 31 characters, so you're right.
But the limit has been 31 since Firmware 1.1 (prior to that, the limit was 18).
- Davey D.
Community Development Manager
SimpliSafe Home Security
0
0
dannydb
7 Messages
3 years ago
Respectfully, I can promise you I've been using a 32 character wifi password on the system up until this latest base station replacement, and the previous unit was on at least v1.4 since I've had door locks installed for over a year, so it would seem the engineers are mistaken about how things have changed.
Allowing at least 32 characters for a wifi password is table stakes in networking security, and there are dozens of other devices on my home network that have zero issue with this requirement.
0
0
davey_d
Community Admin
•
5.6K Messages
3 years ago
That's the mystery right there. Because we are 100% certain that the limit has been exactly 31 for the past several years. It's to do with the limits of the Base Station's memory - we just set it to the maximum. So something might have been different with how you had it set up before.
- Davey D.
Community Development Manager
SimpliSafe Home Security
0
0
worthing
702 Messages
3 years ago
Assuming you're using a password that's mixed case, alpha numeric, and have thrown in a symbol or two I think you're going to be fine with a password that's "only" 30 characters. Would more than 31 characters be objectively more difficult to brute force? Of course. Is the different between a password with 30 and 32 (or even 30 and 52) meaningful in the real world in practical terms? Not in the least bit. The time it would take to brute force a 30 character password (from within range of your WiFi network to boot) is not insignificant.
I actually keep all my SimpliSafe stuff on my guest network so it's not on my "home" network. You could always set up another SSID so you can keep your main SSID password at however long you feel you need it to be. Then your guest network can be set to "only" 31 characters so your risk of exposure is minimized while you wait to see if they make this change. (I would caution you to manage your expectations that this will be adjusted, by the way.)
0
whoaru99
1.3K Messages
3 years ago
0
coltmaster1
2.8K Messages
3 years ago
0
0
coltmaster1
2.8K Messages
3 years ago
https://simplisafe.com/forum/customer-support-forum/installing-and-using-simplisafe/new-version-same-wifi-passwor
https://simplisafe.com/forum/customer-support-forum/installing-and-using-simplisafe/wi-fi
https://simplisafe.com/forum/customer-support-forum/installing-and-using-simplisafe/base-station-wifi-troubles
0
0
davey_d
Community Admin
•
5.6K Messages
3 years ago
coltmaster1,
You're right that we did say that the limit was 32. There was a discrepancy in our internal resources, so unfortunately we had been giving out incorrect information. I sincerely apologize.
But the actual limit in the code was 31. I had to double-check with our engineering team, and had both the Help Center and our own internal documentation updated with the correct info.
(edited)
0
0
coltmaster1
2.8K Messages
3 years ago
0
0
rfrconsult
2 Messages
2 years ago
I actually just found this out and am sending my entire sysetem back. I worry about their programming capabilities if they have limits on passwords.
I would like someone from the engineering team or programming team to tell me why they are limiting the length of a password that is controlled by my wifi. It makes absolutely no sense to me. Nest has no issues with it, apple has no issues with it, sonos has no issues with it, ikea has no issues with it, ADT had no issues with it, every laptop I have owned has no issues with it. Why would Simplisafe limit the length?
(edited)
1
0
Streaky
28 Messages
2 years ago
Once into two digit lengths, quality is more important than quantity.
0
ChadLampson
6 Messages
2 years ago
I use longer than that on my junk email account and way way longer on important stuff.
0
julien51
1 Message
2 years ago
Huh. For a security company, limiting the size of the password is quite bad and makes me wonder about other practices :(
0