2 Attachment(s)
new user passwords are now 'judged'
Ubuntu itself doesn't yet care what the 1st/install user password is, 1 char is allowed.
In the past add users would need to use a min. of 6 chars, now it's at least 7 but not just any 7, has to meet some test (consecutive #'s or horizontal letters on keyboard seem to fail.
Don't really consider a bug, (other than criteria seem weird) but if anyone knows what source controls this would like to know.
(being a poor 2 finger typer typically setup up add users with a simple -
123456 or 234567
Re: new user passwords are now 'judged'
not happy about that myself
no one else uses my computers, why do i need to 'fort knox' them?
Re: new user passwords are now 'judged'
Having a user name and password that is hard to guess, makes it harder for the bad guys to crack your system.
Re: new user passwords are now 'judged'
Quote:
Originally Posted by
buzzmandt
not happy about that myself
no one else uses my computers, why do i need to 'fort knox' them?
Same here.
I dislike systems that think they know better what password I need.
If it was about serious security then Ubuntu should force me to use encrypted filesystems, otherwise the "bad guy" can access anything anyway if he has access to my pc.
I'll login as root and change my password to a simple one anyway. Ubuntu can't dictate me what I need.
Re: new user passwords are now 'judged'
Quote:
Originally Posted by
cariboo907
Having a user name and password that is hard to guess, makes it harder for the bad guys to crack your system.
Even though I've had no issue using just 1 the above is certainly with merit.
Whether some patterns should be enforced rather than suggested, I don't know, was somebody's good idea somewhere
Though I would think screen 1's pass (unacceptable) would be as hard as screen 2's (strong
Re: new user passwords are now 'judged'
Best Password Checker I've seen is (gulp)...
Been using it for years.
Running your "not good enough" password against the MS checker gives a "Best Strength" rating.
Personally, I'd say it IS a bug... ;)
Re: new user passwords are now 'judged'
As it turns out "not good enough" doesn't mean 'can't use'
Just need 9 chars now (123456789 for my occasional test users
Re: new user passwords are now 'judged'
Why set a password at all if you use a weak one?
Quote:
Originally Posted by
bird1500
I'll login as root and change my password to a simple one anyway. Ubuntu can't dictate me what I need.
You can log in as root, so they don't.
Re: new user passwords are now 'judged'
I have always used 9 letter passwords so this is news to me. (I'll have to try it out) :)
I wonder if it has to do with secret current development :)
btw ... I had done an 'encrypted' install a while back during the beginning of raring and I was allowed to get away with using only 6 characters but the requirment was that you had to use numbers mixed with letters.
Re: new user passwords are now 'judged'
Well my philosophy is to use a really strong password (15 Chars+) and then to set autologin. If anyone does then get to my machine via the "backdoor" - i.e. non-physical access, then they are hopefully going to have a job of elevating privileges to root! That way I only need my password for sudo. Having said this, I think I would still object to being forced to work this way - It's my machine and I'll do what I like!
Bouncingwilf