On Sun, 2016-01-17 at 22:16 +0000, Andy Spooner wrote: > Hi > Does anyone know where I can find the setting for password maximum > length? > Check Password Syntax details the minimum length but not the maximum > length.
You should not set a password maximum length. By setting a maximum length, you are essentially confining the search space of your users passwords to an upper bound. This is really bad, and may aid an attacker. You should set a minimum length and quality requirements, however generally the longer the password, the better as each additional character adds more entropy and makes the passwords harder to attack. As a result, directory server does not support a maximum length field on a password. -- Sincerely, William Brown Software Engineer Red Hat, Brisbane
signature.asc
Description: This is a digitally signed message part
-- 389 users mailing list 389-users@%(host_name)s http://lists.fedoraproject.org/admin/lists/389-users@lists.fedoraproject.org
