Koozali.org: home of the SME Server

change minimum password length

Offline sum100

  • *
  • 6
  • +0/-0
change minimum password length
« on: August 20, 2014, 05:14:57 AM »
sme9 here:
/usr/share/perl5/vendor_perl/esmith/FormMagick.pm
 
http://forums.contribs.org/index.php/topic,44858.0/all.html
 
This is not recomended but I have changed this on my server by altering the file :
/usr/lib/perl5/site_perl/esmith/FormMagic on line 789.  Change the 7 to a 5 & "> 6" to "> 4", save the file & give it a try. This worked for me.

sub validate_password
{
    my ($fm,$strength,$pass) =3D @_;

    use Crypt::Cracklib;

    my $reason;

    if ($strength eq "none") {
        return $fm->localise("Passwords must be at least 7 characters =
long") unless (length($pass) > 6);
        return "OK";
    }
 
 
 
config setprop passwordstrength Admin none
config setprop passwordstrength User none
config setprop passwordstrength Ibays none


guest22

Re: change minimum password length
« Reply #1 on: August 20, 2014, 06:54:09 PM »
sum100,

this hack will be gone by the next yum/software update.

guest

Offline CharlieBrady

  • *
  • 6,918
  • +3/-0
Re: change minimum password length
« Reply #2 on: August 20, 2014, 09:20:24 PM »
this hack will be gone by the next yum/software update.

Only if esmith::FormMagick is updated - which it rarely is.

I think this is more to the point:

"This is not recomended ..."

I don't know why sum100 wants to make this change, or why he/she wants to advertise the fact that his/her server has been weakened in this way.