[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [PATCH]Validation of root password with cracklib

From: Jeff Bastian <jbastian redhat com>
To: anaconda-devel-list redhat com
Subject: Re: [PATCH]Validation of root password with cracklib
Date: Mon, 17 Dec 2007 10:59:04 -0600 (CST)

On Mon, 17 Dec 2007, Jeremy Katz wrote:

The problem is that it's really hard to give good guidance on a"minimally-strong" password. And doing a series of dialogs is no betterthan just one -- the people that are going to bypass the recommendationare still going to do so, they're just going to be more annoyed about itand complain more

I agree. I do not believe Anaconda is the right place to enforce passwordstrength policies. Every organization has its own policy on passwords(strength, how often to change, etc.) and trying to put a policy inAnaconda is sure to conflict with somebody's policy and generatecomplaints.

The only way to not conflict with others' policies is not to have apolicy.


Furthermore, since you can use the encrypted password in a kickstart file
  password --iscrypted $1$abc....

how can you check the strength? If a box gets rooted, Anaconda could getblamed for not warning the user of a weak password.


Jeff Bastian

Follow-Ups:
- Re: [PATCH]Validation of root password with cracklib
  - From: HARA Hiroshi

References:
- [PATCH]Validation of root password with cracklib
  - From: HARA Hiroshi
- Re: [PATCH]Validation of root password with cracklib
  - From: HARA Hiroshi
- Re: [PATCH]Validation of root password with cracklib
  - From: Matthew Miller
- Re: [PATCH]Validation of root password with cracklib
  - From: Jeremy Katz
- Re: [PATCH]Validation of root password with cracklib
  - From: Matthew Miller
- Re: [PATCH]Validation of root password with cracklib
  - From: Matthew Miller
- Re: [PATCH]Validation of root password with cracklib
  - From: Jeremy Katz

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]