Description of problem: Anaconda F21 RC1 does not check cracklib because a weakness password in the dictionary like "sogtulakk" is considered "enough" and don't need the double check with "ok" button. Version-Release number of selected component (if applicable): F21 RC1 How reproducible: Just install netinstall ISO F21 RC1 and type root password: sogtulakk and see "enough" Steps to Reproduce: 1.wget https://dl.fedoraproject.org/pub/alt/stage/21_Alpha_RC1/Server/i386/iso/Fedora-Server-netinst-i386-21_Alpha.iso 2.Install it and select root passwd "sogtulakk" 3. No double check for a password that IS in cracklib dictionary Actual results: Expected results: Additional info:
sogtulakk is not recognized by the current cracklib dictionaries. You can verify it yourself by: $ cracklib-check sogtulakk sogtulakk: OK
This word is not particularly common, why it should be included in the dictionary?
(In reply to Tomas Mraz from comment #2) > This word is not particularly common, why it should be included in the > dictionary? Yes, in spanish sogtulakk is a well known word game, if you read letter by letter the pronunciation (in spanish) is ESE O GE TE U ELE A KA KA that in spanish means "that a**h*l3 smells like p**p". Google the word and: https://lacienciamaldita.blogspot.com/2005/10/si-no-entendiste-sogtulakk.html 2005!! Sorry for the delay in my answer but i recovered my password in 2021 from old HDD.
we are not going to process a bug per common word you find is accepted as password. We use upstream related word dicts and rules. Please contact upstream if you want to help them working on the word lists and rules