> Also, allow the user to select the characters, symbols and digits, > i.e. we avoid zero and "O", one and "l", v and w, V and W and the > characters commonly used in connection with databases, such as %, ?, > etc.
While I don't share your restrictions, I agree that more flexibility for the system admin or host admin is better than less. I don't see any reason to use any newfangled syntax to denote the password mask, however. Use standard regular expression syntax -- since using a regex is the way to check it at at the code level, it's totally transportable. Use and publish a basic default regex, and let the user specify an override regex. A related subfeature that I would suggest would be a user-configurable password_strength_hint: the message that alerts the user when a pw doesn't fit the mask. Webmail should never struggle to translate English from a crazy regex, nor should it spit back technical gobbledygook to the user. --Sandy ------------------------------------ Sanford Whiteman, Chief Technologist Broadleaf Systems, a division of Cypress Integrated Systems, Inc. e-mail: [EMAIL PROTECTED] SpamAssassin plugs into Declude! http://www.imprimia.com/products/software/freeutils/SPAMC32/download/release/ Defuse Dictionary Attacks: Turn Exchange or IMail mailboxes into IMail Aliases! http://www.imprimia.com/products/software/freeutils/exchange2aliases/download/release/ http://www.imprimia.com/products/software/freeutils/ldap2aliases/download/release/ To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
