My site is a news site that allows users to register to chat on discussion boards; I am getting a lot of spam signups from people with emails that end in .xyz and .ru for example. I see on the User/Manager/Options/EmailDomain that I can restrict signups from certain domains such as those mentioned.
However, when I add those exceptions, I then get am error message saying "Invalid field: Minimum Password Length" and in looking at other Joomla boards, I see that they are requiring me to set a minimum 12 characters.
My concern is if I change to 12 characters (as requested) that all my users will not be able to sign in. I found a board message that says if you change to 12 characters, that rule will apply to "existing" users only when they want to change their password.
The link is here: https://issues.joomla.org/tracker/joomla-cms/40780
I just wanted to see if I can get guidance on if that is the case, that existing users will only have to go to 12 characters "If" they want to change their password.