Opened 17 months ago
Last modified 16 months ago
#1488268 new Feature Requests
Password Plugin - more password strength checking options
| Reported by: | fraggy | Owned by: | |
|---|---|---|---|
| Priority: | 5 | Milestone: | later |
| Component: | Plugins | Version: | 0.7 |
| Severity: | normal | Keywords: | |
| Cc: | urusha.v1.0@… |
Description
Hi,
we are using the password plugin to change passwords in LDAP.
It would be nice, if there are options to be more strict when choosing a new password.
required:
- Password Minimum Length: 8 chars (password_minimum_length allready implemented)
- Contain characters from 3 of the following 4 categories: English uppercase characters (A through Z), English lowercase characters (a through z), Base 10 digits (0 through 9), Non-alphabetic characters (for example, !, $, #, %)
nice to have:
- min. 2 different chars between old and new password (pam_cracklib Option difok=2)
- Not contain the user's account name or parts of the user's full name that exceed two consecutive characters
regards,
Maik
Attachments (1)
Change History (4)
comment:1 Changed 17 months ago by alec
- Summary changed from Password Plugin - more 'require' options to Password Plugin - more password strength checking options
comment:2 Changed 16 months ago by urusha
This patch adds some new requirements. We've been successfully using it in production for several months with chpasswd backend. It only includes english and russian translations.
New requirements:
- digits
- latin
- upper
- lower
- special
- no repeat more than 2 times in a row
comment:3 Changed 16 months ago by urusha
- Cc urusha.v1.0@… added
Note: See
TracTickets for help on using
tickets.
We could use cracklib for password checking.