Koozali.org: home of the SME Server

Legacy Forums => Suggestions => Topic started by: chris snow on June 06, 2003, 06:05:45 PM

Title: Strong Passwords
Post by: chris snow on June 06, 2003, 06:05:45 PM: Has anyone done any work on checking password strength when someone changes their password?

For example: password quality script aka --with-cracklib replacement
http://groups.google.com/groups?hl=en&lr=&ie=UTF-8&oe=UTF-8&selm=b2cinj%249ik%241%40FreeBSD.csie.NCTU.edu.tw

Thanks,

Chris
Title: Re: Strong Passwords
Post by: Gordon Rowell on June 15, 2003, 06:50:24 AM: > Has anyone done any work on checking password strength when
> someone changes their password?
>
> For example: password quality script aka --with-cracklib replacement
> [...]

Yes - we apply cracklib to the admin password, but not currently
to user passwords (by default).

Have a look at the configdb entry for passwordstrength and
esmith::FormMagick::validate_password.

Gordon

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy | Terms and Policies