Page 1 of 3 123 LastLast
Results 1 to 10 of 21

Thread: new user passwords are now 'judged'

  1. #1
    Join Date
    Jun 2007
    Beans
    13,446

    new user passwords are now 'judged'

    Ubuntu itself doesn't yet care what the 1st/install user password is, 1 char is allowed.
    In the past add users would need to use a min. of 6 chars, now it's at least 7 but not just any 7, has to meet some test (consecutive #'s or horizontal letters on keyboard seem to fail.

    Don't really consider a bug, (other than criteria seem weird) but if anyone knows what source controls this would like to know.

    (being a poor 2 finger typer typically setup up add users with a simple -
    123456 or 234567
    Attached Images Attached Images

  2. #2
    Join Date
    Jun 2007
    Location
    Truck stop somewhere USA
    Beans
    736
    Distro
    Kubuntu Development Release

    Re: new user passwords are now 'judged'

    not happy about that myself
    no one else uses my computers, why do i need to 'fort knox' them?

  3. #3
    Join Date
    Mar 2006
    Location
    Williams Lake
    Beans
    Hidden!
    Distro
    Ubuntu Development Release

    Re: new user passwords are now 'judged'

    Having a user name and password that is hard to guess, makes it harder for the bad guys to crack your system.

  4. #4
    Join Date
    Aug 2012
    Beans
    185

    Re: new user passwords are now 'judged'

    Quote Originally Posted by buzzmandt View Post
    not happy about that myself
    no one else uses my computers, why do i need to 'fort knox' them?
    Same here.
    I dislike systems that think they know better what password I need.
    If it was about serious security then Ubuntu should force me to use encrypted filesystems, otherwise the "bad guy" can access anything anyway if he has access to my pc.

    I'll login as root and change my password to a simple one anyway. Ubuntu can't dictate me what I need.
    Last edited by bird1500; December 2nd, 2012 at 05:21 AM.

  5. #5
    Join Date
    Jun 2007
    Beans
    13,446

    Re: new user passwords are now 'judged'

    Quote Originally Posted by cariboo907 View Post
    Having a user name and password that is hard to guess, makes it harder for the bad guys to crack your system.
    Even though I've had no issue using just 1 the above is certainly with merit.
    Whether some patterns should be enforced rather than suggested, I don't know, was somebody's good idea somewhere

    Though I would think screen 1's pass (unacceptable) would be as hard as screen 2's (strong

  6. #6
    Join Date
    Aug 2010
    Location
    Arizona USA
    Beans
    2,868
    Distro
    Ubuntu Development Release

    Re: new user passwords are now 'judged'

    Best Password Checker I've seen is (gulp)...


    Been using it for years.

    Running your "not good enough" password against the MS checker gives a "Best Strength" rating.

    Personally, I'd say it IS a bug...
    Intel ® P4 Extreme Edition 3.4 (Gallatin) || DFI ® LanParty PRO875B rev B1
    Crucial ® Ballistix Tracer PC4000 1GB || Mountain Mods U2-UFO Opti-1203
    XFX 7600GT 560M AGP (PV-T73A-UDF3) || Corsair HX520W Modular PSU

  7. #7
    Join Date
    Jun 2007
    Beans
    13,446

    Re: new user passwords are now 'judged'

    As it turns out "not good enough" doesn't mean 'can't use'
    Just need 9 chars now (123456789 for my occasional test users

  8. #8
    Join Date
    Sep 2006
    Location
    Central Europe
    Beans
    Hidden!
    Distro
    Ubuntu Development Release

    Re: new user passwords are now 'judged'

    Why set a password at all if you use a weak one?

    Quote Originally Posted by bird1500 View Post
    I'll login as root and change my password to a simple one anyway. Ubuntu can't dictate me what I need.
    You can log in as root, so they don't.
    The Power User’s Guide to Unity
    Questions about Ubuntu? Ask them at askubuntu.com!

  9. #9
    Join Date
    Sep 2010
    Location
    Beta Testing in Canada
    Beans
    6,022
    Distro
    Ubuntu Development Release

    Re: new user passwords are now 'judged'

    I have always used 9 letter passwords so this is news to me. (I'll have to try it out)

    I wonder if it has to do with secret current development

    btw ... I had done an 'encrypted' install a while back during the beginning of raring and I was allowed to get away with using only 6 characters but the requirment was that you had to use numbers mixed with letters.
    Last edited by ventrical; December 2nd, 2012 at 11:55 AM.
    This is Rolling Release
    Warnings for New Beta Testers& Helpful Terminal Commands:
    Running Trusty /devel/@ 5.120GHz32bit/ Please put [ prefix] on New Threads!

  10. #10
    Join Date
    May 2010
    Location
    SE England
    Beans
    210

    Re: new user passwords are now 'judged'

    Well my philosophy is to use a really strong password (15 Chars+) and then to set autologin. If anyone does then get to my machine via the "backdoor" - i.e. non-physical access, then they are hopefully going to have a job of elevating privileges to root! That way I only need my password for sudo. Having said this, I think I would still object to being forced to work this way - It's my machine and I'll do what I like!

    Bouncingwilf
    Last edited by bouncingwilf; December 2nd, 2012 at 12:24 PM. Reason: incompetence!

Page 1 of 3 123 LastLast

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •