Re: RFC: changes to default password strength checks in pam_unix
> Some schools even use the same password for all lower grade users
> instead of providing very easy passwords, and I am not sure if that is
> better. I am convinced the schools will come up with some new an
> innovative insecure way to work around any enforced password policy,
> so it might not matter either way. :)
I doubt short passwords are a problem there, school computers are
usually in their own, private network, and hopefully firewalled against
the evil outside. If one kid "hacks" another kid's account - well.... I
think we could live with that.
Imho school computers should boot from network and/or use COW anyway, so
it's just a reboot to restore the original system. And the kid's data
can be backuped.
That's pretty much different in University networks of course - but I
guess people there are old enough to learn to use proper passwords.