I don't think it would be difficult to write a password checker that allows you to check against a badlist of passwords you can configure. Similar, it wouldn't be hard to do this with something like zxcvbn via rust either.
> On 23 Sep 2020, at 02:03, Bryan K. Walton <[email protected]> wrote: > > On Tue, Sep 22, 2020 at 11:58:39AM -0400, Mark Reynolds wrote: >> >> On 9/22/20 11:45 AM, Bryan K. Walton wrote: >>> We are running 389ds with CentOS 8. Can anybody confirm if there is a >>> way to check passwords against the haveibeenpwned.com database when >>> users are changing passwords? >> >> No, there is only the option to use Cracklib's database for dictionary >> checks. There is no external password checking at this time. > > Thank you. > -Bryan > _______________________________________________ > 389-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedoraproject.org/archives/list/[email protected] — Sincerely, William Brown Senior Software Engineer, 389 Directory Server SUSE Labs, Australia _______________________________________________ 389-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
