#29274: Update the password list used by CommonPasswordValidator to a more
recent
list
-------------------------------------+-------------------------------------
Reporter: Brenton | Owner: nobody
Cleeland |
Type: New | Status: new
feature |
Component: | Version: 2.0
contrib.auth | Keywords:
Severity: Normal | CommonPasswordValidator
Triage Stage: | Has patch: 0
Unreviewed |
Needs documentation: 0 | Needs tests: 0
Patch needs improvement: 0 | Easy pickings: 0
UI/UX: 0 |
-------------------------------------+-------------------------------------
There is a recently released list of common passwords from Troy Hunt /
Have I Been Pwned that could be used as a basis for the
CommonPasswordValidator.
Most of the top 20k have been unhashed and made available here by Royce
Williams:
https://gist.github.com/roycewilliams/281ce539915a947a23db17137d91aeb7
My suggestion would be to use this complete list, but I'd be open to using
a smaller subset if the community would prefer.
--
Ticket URL: <https://code.djangoproject.com/ticket/29274>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/django-updates/047.69611ae86b3ae82f1a90b86986399732%40djangoproject.com.
For more options, visit https://groups.google.com/d/optout.
