Control: retitle -1 CVE-2013-4440: trivially weak passwords if no tty Control: severity -1 grave Control: tags -1 +patch Control: tags 726578 -patch
As dropping from 27.8 bits of entropy to 22.6 makes passwords trivially weak, I'm setting this split bug to grave, and attaching a copy of the patch. Mere 27 bits are not so hot either so we probably should think about upping the length too. -- // If you believe in so-called "intellectual property", please immediately // cease using counterfeit alphabets. Instead, contact the nearest temple // of Amon, whose priests will provide you with scribal services for all // your writing needs, for Reasonable and Non-Discriminatory prices. -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
