[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#854653: encourage users to generate strong passwords

On 2017-02-09 05:52:16, Christian PERRIER wrote:
> reassign 854653 user-setup
> thanks
>
> Quoting Antoine Beaupre (anarcat@debian.org):
>> Package: debian-installer
>> Severity: wishlist
>> 
>> After reflecting for a few days about password generation and writing
>> an [article][1] about it, I was told the debian-installer may be a good
>> place to encourage people to set strong passwords. In the d-i, we set
>> one or three critically important passwords: the main user account
>> and, optionnally, the root account and crypto passphrase. The latter
>> password seems especially important to be cryptographically secure.
>
>
> This is more or less #364526....
>
> I don't merge the bugs as they're phrased differently but I think the
> spirit is the same.....but in 11 years, it seems that nobody stepped
> up to implement something..:-)

True, it's pretty similar. But what I am suggesting is not actually to
check password strength (which could be done by linking to passwdqc,
btw) but actually generate passwords for the user, from a word list.

It's a distinct proposal.

I suspect it's likely to sit there for a while as well... But I didn't
want to lose track of it. :)

A.

-- 
Si Dieu est, l'homme est esclave ; 
or l'homme peut, doit être libre, donc Dieu n'existe pas.
Et si Dieu existait, il faudrait s'en débarrasser!
                        - Michel Bakounine
Reply to: