Koozali.org: home of the SME Server

Obsolete Releases => SME Server 7.x => Topic started by: lightman on January 29, 2009, 07:01:15 PM

Title: How to set Password strength to less than 7 characters long
Post by: lightman on January 29, 2009, 07:01:15 PM

Hello
Sorry to post this, I know it has been asked 1000 times, but after been reading through the forum for about 1 hour, i couldn´t find the answer

I did the classic:

Code: [Select]

/sbin/e-smith/db configuration setprop passwordstrength Users none
/sbin/e-smith/db configuration setprop passwordstrength Ibays none

But I still get an error telling me that the password cannot be shorter than 7 digits, is there is any way around it?

I do use strong passwords for admin and primary users, but there are a bunch of users that are impossible to make them learn strong passwords :D

thanks in advance
Light

Title: Re: How to set Password strength to less than 7 characters long
Post by: Stefano on January 29, 2009, 07:10:42 PM

Quote from: lightman on January 29, 2009, 07:01:15 PM

But I still get an error telling me that the password cannot be shorter than 7 digits, is there is any way around it?

the short one: no
the long one: no, you can't :-)

Quote

I do use strong passwords for admin and primary users, but there are a bunch of users that are impossible to make them learn strong passwords :D

if password are set to "none", even "0000000" will work.. I don't think this is a difficult password to remember.. ;-)

Ciao
Stefano

Title: Re: How to set Password strength to less than 7 characters long
Post by: mercyh on January 29, 2009, 08:01:15 PM

The length requirement is not there just "because".

see the note about PAM in the FAQ here:
http://wiki.contribs.org/SME_Server:Documentation:FAQ#Password_Strength_Checking
 (http://wiki.contribs.org/SME_Server:Documentation:FAQ#Password_Strength_Checking)

Title: Re: How to set Password strength to less than 7 characters long
Post by: lightman on February 12, 2009, 05:39:28 PM

Hi, Thanks for your answer.
In the wiki (the link you post) it says that the lower limit to avoid problems is six characters, so why the current SME limit is seven???.

I have to modify all the passwords of a bunch of unhappy users, that used the same password for years.

Obviously for all the new systems I force the users to choose passwords with at least 8 characters (just in case).

momentarily i solve the problem adding zeroes at the end of the old passwords (good tip btw Stefano thanks :grin: )

thanks
Light

Title: Re: How to set Password strength to less than 7 characters long
Post by: Stefano on February 12, 2009, 05:51:50 PM

Quote from: lightman on February 12, 2009, 05:39:28 PM

I have to modify all the passwords of a bunch of unhappy users, that used the same password for years.

well.. you and your users are really lucky.. here (italy), I'm forced to change password every 6 months (if I'm not a lawyer, in this case is every 90 days) ;-)

Quote

momentarily i solve the problem adding zeroes at the end of the old passwords (good tip btw Stefano thanks :grin: )

sometimes "big" problems have small and easy solutions :-)

Ciao
Stefano