Ubuntu itself doesn't yet care what the 1st/install user password is, 1 char is allowed. In the past add users would need to use a min. of 6 chars, now it's at least 7 but not just any 7, has to meet some test (consecutive #'s or horizontal letters on keyboard seem to fail. Don't really consider a bug, (other than criteria seem weird) but if anyone knows what source controls this would like to know. (being a poor 2 finger typer typically setup up add users with a simple - 123456 or 234567
not happy about that myself no one else uses my computers, why do i need to 'fort knox' them?
Having a user name and password that is hard to guess, makes it harder for the bad guys to crack your system.
Forum posting guidelinesMember:Not Canonical TeamUbuntu membership via Forums contributions
Originally Posted by buzzmandt not happy about that myself no one else uses my computers, why do i need to 'fort knox' them? Same here. I dislike systems that think they know better what password I need. If it was about serious security then Ubuntu should force me to use encrypted filesystems, otherwise the "bad guy" can access anything anyway if he has access to my pc. I'll login as root and change my password to a simple one anyway. Ubuntu can't dictate me what I need.
Last edited by bird1500; December 2nd, 2012 at 05:21 AM.
Originally Posted by cariboo907 Having a user name and password that is hard to guess, makes it harder for the bad guys to crack your system. Even though I've had no issue using just 1 the above is certainly with merit. Whether some patterns should be enforced rather than suggested, I don't know, was somebody's good idea somewhere Though I would think screen 1's pass (unacceptable) would be as hard as screen 2's (strong
Best Password Checker I've seen is (gulp)... https://www.microsoft.com/en-gb/secu...d-checker.aspx Been using it for years. Running your "not good enough" password against the MS checker gives a "Best Strength" rating. Personally, I'd say it IS a bug...
Intel ® P4 Extreme Edition 3.4 (Gallatin) || DFI ® LanParty PRO875B rev B1 Crucial ® Ballistix Tracer PC4000 1GB || Mountain Mods U2-UFO Opti-1203 XFX 7600GT 560M AGP (PV-T73A-UDF3) || Corsair HX520W Modular PSUHOWTO:VinDSL Conky Script by 42dorian
As it turns out "not good enough" doesn't mean 'can't use' Just need 9 chars now (123456789 for my occasional test users
Why set a password at all if you use a weak one? Originally Posted by bird1500 I'll login as root and change my password to a simple one anyway. Ubuntu can't dictate me what I need. You can log in as root, so they don't.
→ The Power User’s Guide to Unity ← Questions about Ubuntu? Ask them at askubuntu.com!
I have always used 9 letter passwords so this is news to me. (I'll have to try it out) I wonder if it has to do with secret current development btw ... I had done an 'encrypted' install a while back during the beginning of raring and I was allowed to get away with using only 6 characters but the requirment was that you had to use numbers mixed with letters.
Last edited by ventrical; December 2nd, 2012 at 11:55 AM.
Well my philosophy is to use a really strong password (15 Chars+) and then to set autologin. If anyone does then get to my machine via the "backdoor" - i.e. non-physical access, then they are hopefully going to have a job of elevating privileges to root! That way I only need my password for sudo. Having said this, I think I would still object to being forced to work this way - It's my machine and I'll do what I like! Bouncingwilf
Last edited by bouncingwilf; December 2nd, 2012 at 12:24 PM. Reason: incompetence!
Ubuntu Forums Code of Conduct