Bug 1002276 - RFE: XKCD style passwords
RFE: XKCD style passwords
Status: ASSIGNED
Product: Fedora
Classification: Fedora
Component: freeipa (Show other bugs)
rawhide
All All
unspecified Severity low
: ---
: ---
Assigned To: Rob Crittenden
Fedora Extras Quality Assurance
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2013-08-28 15:01 EDT by sakodak
Modified: 2013-08-28 15:45 EDT (History)
6 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description sakodak 2013-08-28 15:01:46 EDT
I would very much like to have the option for XKCD style passwords as an option in IPA:

https://xkcd.com/936/

With traditional style passwords becoming less and less secure, doing this would be quite helpful.

I know it can be simulated by just doing it, but there's no way to do that and have traditional passwords at the same time (while transitioning.)  An actual password policy that I could apply to just certain groups would be the right way of going about it.
Comment 1 Rob Crittenden 2013-08-28 15:12:08 EDT
Can you be more explicit what you're asking for here. You want a password policy to enforce that the password is made up of 4 discrete words? All lower-case?

Or do you want us to do enforcement based on the entropy math?
Comment 2 sakodak 2013-08-28 15:17:02 EDT
Specifically: four discrete words, preferably with a cracklib-like check to see if they're unrelated (as in, not appearing together, in sequence, in common phrases (or at least a stub that can be extended later.))

I'm not even sure how you'd go about tackling the entropy math.
Comment 3 Rob Crittenden 2013-08-28 15:45:17 EDT
Upstream ticket:
https://fedorahosted.org/freeipa/ticket/3887

Note You need to log in before you can comment on or make changes to this bug.