Koozali.org: home of the SME Server
Legacy Forums => General Discussion (Legacy) => Topic started by: yehaah on December 09, 2005, 01:07:18 PM
-
I've just installed SME Server 7 Beta8
Wow, you have sure made a lot of brilliant improvements!
There is one big problem though...
...password security!
Yes, it's an important thing, but in this case it's almost hysterical.
I had to try at least 6 passwords before finding one that it would accept, and even passwords like "icfabptw" (I Can't Find A Bloody Password That Works) were marked as not secure enough.
Password sercurity is important, but I'm afraid that this will kill of a lot of usability.
If I install 7b8 on our mailserver with 900+ adresses, and set people to change a password to one "of their on choice" I'd be lynched.
After helping them all to create a password they cant remember, I'd have to hire a man full time, resetting forgotten passwords.
Can this funktion be switched off, or can it be reduced to only demand 6 words, that are'nt in a dictionary?
Everything more than this will kill any posibility for getting accept from my users (and probably a few other admins users).