I'm using version 1.9.2.0

When a user initially registers, it seems that the password can have a wide variety of special characters like xxx+&123.  The reset takes this same password without complaining but then won’t let you log on and doesn’t give much of a clue.  It will take xxx_123 as a reset password and allow a logon with it.  So, it must have a list of what it will and won’t take in the reset process.  As I’m not dealing with the full source code, I can’t fix this.  However, I can change the page text – so, can you tell me what special characters it will take in the reset process.  Unfortunately, I can't enforce this list of characters without going back to the source - which I don't have time for right now. Thanks.