IMHO, only if it is settable in the Admin GUI. What is wrong with giving the admin a choice as to how they want their system setup?
Just because you want it at 4 doesn't mean somebody isn't trying to replace another system that allowed for 3. I don't disagree that more security is good. But at least allow somebody to slit their own throat. Set your defaults where they are reasonable but allow them to be changed. This doesn't seem hard (to me, but I'm not a programmer either). Mike On Fri, Oct 7, 2011 at 4:16 AM, Venkateshwaran T < [email protected]> wrote: > ** > How about the error message if admin tries to give a password less than > 4? > > Kumaran T > > > On 10/7/2011 1:12 PM, Michael Picher wrote: > > I'd say default to 4, let the admin change it to something lower if they'd > like... > > On Fri, Oct 7, 2011 at 3:34 AM, Venkateshwaran T < > [email protected]> wrote: > >> Hi Michael, >> My concern is that password will be too small if its 1to3 >> characters.But it depends on administrator for password length.May be we can >> force them to have password move than certain character.. >> >> Regards, >> Kumaran T >> >> >> >> On 10/7/2011 12:57 PM, Michael Picher wrote: >> >> I'll respond the same way I did on the dev list (just add a little bit for >> clarity)... >> >> I think this needs to be administrator configurable for length and >> complexity and also allow whatever from the LDAP side (assuming that the >> LDAP system will be enforcing whatever policies there). >> >> Also we have this issue that needs to be corrected: >> http://track.sipfoundry.org/browse/XX-9877 >> >> Thanks, >> Mike >> >> On Fri, Oct 7, 2011 at 3:13 AM, Kumaran T < >> [email protected]> wrote: >> >>> Hi All, >>> Currently the sipXecs will allow pin or password with 1 or more >>> character..Pin or password with 1 to 3 digit are too small.So as the >>> improvement sipXconfig should allow pin or password with more than either 4 >>> or 5 to certain characters and should not exceed 12 or 24.. >>> >>> >>> Regards, >>> Kumaran T >>> >>> _______________________________________________ >>> sipx-users mailing list >>> [email protected] >>> List Archive: http://list.sipfoundry.org/archive/sipx-users/ >>> >> >> >> >> -- >> Michael Picher >> eZuce >> Director of Technical Services >> O.978-296-1005 X2015 >> M.207-956-0262 >> @mpicher <http://twitter.com/mpicher> >> www.ezuce.com >> >> >> > > > -- > Michael Picher > eZuce > Director of Technical Services > O.978-296-1005 X2015 > M.207-956-0262 > @mpicher <http://twitter.com/mpicher> > www.ezuce.com > > > -- Michael Picher eZuce Director of Technical Services O.978-296-1005 X2015 M.207-956-0262 @mpicher <http://twitter.com/mpicher> www.ezuce.com
_______________________________________________ sipx-users mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-users/
