Re: Password security/Weak Password lockout

To: Paul Gupta <wubrgamer@gmail.com>
Cc: debian-user@lists.debian.org
Subject: Re: Password security/Weak Password lockout
From: Mark Allums <mark@allums.com>
Date: Tue, 20 Jan 2009 01:43:04 -0600
Message-id: <[🔎] 49758088.7070509@allums.com>
In-reply-to: <[🔎] 49757848.8020906@guptaxpn.com>
References: <[🔎] 49757848.8020906@guptaxpn.com>

Paul Gupta wrote:

By what mechanism does debian decide whether or not a password is tooweak etc.
I have seen opensuse and perhaps fedora do the same thing during theinstallation. It'll spit out a warning saying similar to "This passwordis too weak, are you sure you want to use it?"
I'm assuming (which I hate to do, which is why I'm asking) that it'susing the same thing across all of these different distros.
What is it exactly? AND How would one configure it to be stricter ormore lenient with password selection?
Thank you!


It's a heuristic.  I thought everybody made up their own.  I didn't
think that there was a uniform standard.  It would have to change pretty
often.

Basically, all the rules like length, mixed case, no dictionary words,
numerals and special characters encouraged, no birthdays or dates, etc.
  All that stuff rolled into a degree of fitness.  A minimum fitness
required to pass.

Mark Allums

Reply to:

References:
- Password security/Weak Password lockout
  - From: Paul Gupta <wubrgamer@gmail.com>

Prev by Date: Password security/Weak Password lockout
Next by Date: Re: Password security/Weak Password lockout
Previous by thread: Password security/Weak Password lockout
Next by thread: Re: Password security/Weak Password lockout
Index(es):
- Date
- Thread