[Bug 16435] New: New extension to enforce minimum password strength.

bugzilla-daemon Sat, 22 Nov 2008 19:22:11 -0800

https://bugzilla.wikimedia.org/show_bug.cgi?id=16435


           Summary: New extension to enforce minimum password strength.
           Product: MediaWiki extensions
           Version: any
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: Normal
         Component: Extensions requests
        AssignedTo: [email protected]
        ReportedBy: [EMAIL PROTECTED]
            Blocks: 9816


Apparently Brion ran at least once a "password cracker"
(http://meta.wikimedia.org/wiki/Talk:Stewards#Proposed_security_policy). While
that's useful to identify vulnerable accounts, it is perhaps best to enforce
minimum password strength from the get-go.

This extension should have the ability to
*force users to reset their password every X timespan
*enforce minimum password length
*enforce varying levels of password security by user group (ie admins have an
intermediate level, stewards must have a high level)
*bug 9838 Send notification to account owner on multiple unsuccessful login
attempts
*maybe other stuff I've not thought about


-- 
Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
You are watching all bug changes.

_______________________________________________
Wikibugs-l mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/wikibugs-l

[Bug 16435] New: New extension to enforce minimum password strength.

Reply via email to