Re: [openstack-dev] [openstack][keystone] Is the user password too simple?

2014-01-01 Thread li-zheming
在2013年12月31 03时15分,Brant Knudsonb...@acm.org写道: On Mon, Dec 30, 2013 at 12:55 AM, li-zheming li-zhem...@163.com wrote: hi all: when create user, you can set user password. You can set password as a simple word 'a'. the password is too simple but not limit. if someone want to steal

Re: [openstack-dev] [openstack][keystone] Is the user password too simple?

2014-01-01 Thread li-zheming
hi Thomas: thank you for your suggestion. I agree with you. cracklib is useful to check password. I only give a example to set password, not force use this rule. I think password scheme should be more discussion. I refer to linux password policy. The Linux password rule is

Re: [openstack-dev] [openstack][keystone] Is the user password too simple?

2014-01-01 Thread Morgan Fainberg
Brant, That is fine for some cases but we provide non-ldap backends, and a read/write backend. If we continue to provide a keystone specific idp (likely we need to), these features are a must-have in the long run. Just my view (and requests from real customers). It's all well and good to

Re: [openstack-dev] [openstack][keystone] Is the user password too simple?

2013-12-30 Thread Jeremy Stanley
On 2013-12-30 23:15:06 +0800 (+0800), Thomas Goirand wrote: On 12/30/2013 02:55 PM, li-zheming wrote: [...] I consider that it must be limited when set password, like this: 1. inlcude uppper and lower letters 2. include nums 3. include particular symbol,such as '_',''

Re: [openstack-dev] [openstack][keystone] Is the user password too simple?

2013-12-30 Thread Gabriel pettier
On Mon, Dec 30, 2013 at 11:15:06PM +0800, Thomas Goirand wrote: On 12/30/2013 02:55 PM, li-zheming wrote: hi all: when create user, you can set user password. You can set password as a simple word 'a'. the password is too simple but not limit. if someone want to steal your

Re: [openstack-dev] [openstack][keystone] Is the user password too simple?

2013-12-30 Thread Brant Knudson
On Mon, Dec 30, 2013 at 12:55 AM, li-zheming li-zhem...@163.com wrote: hi all: when create user, you can set user password. You can set password as a simple word 'a'. the password is too simple but not limit. if someone want to steal your password, it is so easily(such as exhaustion).