[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [PATCH]Validation of root password with cracklib



On Mon, Dec 17, 2007 at 11:07:04AM +0900, HARA Hiroshi wrote:
> >"Bad password" is too vague. This message needs to explain that the 
> >password
> >isn't strong enough to meet some basic tests, not just that it's bad.
> I see. as you said, only "Bad password" is too vague, but "msg" can explain 
> something.

Right. Perhaps starting with "Weak Password" as the caption, and then
explaining a bit more.

> 2-1. If "No" button is pressed, you need to retry to input a password.
> 2-2. If "Yes" button is pressed, you do NOT need to retry to input a
>      password, you can use a dictionary word password like "anaconda".
> I'm sorry for my poor English, and if I misuderstood what you mean,
> please let me know.

I understand that as a reasonable compromise behavior, but in the CDs I give
out to people, I'd prefer there not to be any option to use a dictionary
word at all. (If there's a way to shoot themselves in the foot, people will
take it.)

-- 
Matthew Miller           mattdm mattdm org          <http://mattdm.org/>
Boston University Linux      ------>              <http://linux.bu.edu/>


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]