[ http://issues.apache.org/jira/browse/VALIDATOR-134?page=all ]
Niall Pemberton resolved VALIDATOR-134. --------------------------------------- Resolution: Won't Fix I think people are better off implementing their own custom password validators. Closing as WONT FIX > [validator] create 5 or more password-policy validators > ------------------------------------------------------- > > Key: VALIDATOR-134 > URL: http://issues.apache.org/jira/browse/VALIDATOR-134 > Project: Commons Validator > Issue Type: Improvement > Components: Routines > Environment: Operating System: All > Platform: Other > Reporter: Ralf Hauser > Priority: Minor > > besides the already existing length-check, the following (server-side only as > per COM-160 - although most sites tell a cracker on their registration pages > in plain english anyway what the minimum policy is) validators would be > useful: > - require capital letter > - require a non-captial letter > - require a number > - require a special character. > Furthermore there should be combination-validators, e.g. one would use the > above > four to implement a "2 out of 4" rule. > Most government uses require something alike, e.g. as per > http://www.isb.admin.ch/imperia/md/content/sicherheit/informatiksicherheit/sicherheitsweisungen/anhang1_d.pdf, > item 2.4 (German) -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]