[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: bin/10206: of what use are even 128-byte passwords if people can still choose easily guessable ones?
The following reply was made to PR bin/10206; it has been noted by GNATS.
From: "Greg A. Woods" <woods%planix.ca@localhost>
To: NetBSD GNATS <gnats-bugs%NetBSD.org@localhost>
Subject: Re: bin/10206: of what use are even 128-byte passwords if people can
still choose easily guessable ones?
Date: Wed, 18 Nov 2009 21:45:57 -0500
Content-Type: text/plain; charset=US-ASCII
At Wed, 18 Nov 2009 17:35:02 +0000 (UTC), Matthias Drochner <M.Drochner@fz-=
Subject: Re: bin/10206: of what use are even 128-byte passwords if people c=
an still choose easily guessable ones?
> Just for the record: There is a PAM module in
> pkgsrc/security/pam-passwdqc which does password
> strength checking.
It doesn't seem to be any better than the unused and unusable and
incompletely documented code that was thrown haphazardly into NetBSD as
It's also PAM specific, and I'm sure you know what I think about PAM.
(that said, apparently it is usable on systems without PAM, but likely
not usefully without proper integration)
Greg A. Woods
<woods%planix.com@localhost> +1 416 218 0099
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (NetBSD)
-----END PGP SIGNATURE-----
Main Index |
Thread Index |