http://bugzilla.novell.com/show_bug.cgi?id=535617
User mc@novell.com added comment
http://bugzilla.novell.com/show_bug.cgi?id=535617#c17
Michael Calmer
So there stay the following issues:
1.) The spinbox in YaST allows min_length=0. But the spinbox should not allow number < 5 (simple UI issue)
Well, maybe we should not change this now. See comments below.
3.) As described in comment #3 it is also not possible to set a password of the length of 5 characters with the "passwd" command (even if min_length is set to 5 in YaST before). Maybe the pam_cracklib requieres even 6 letters? In this case, issue 1 (and bug 539053) should requiere at least 6 letters. If not -> is this another issue?
I had a deep look into the code. The following happens: pam_cracklib calls first cracklib library FascistCheck() to compare the new password against a dictionary. This function has a hard coded MINLEN of "6". Only if this function is passed, it calls its own strength checks where the "minlen" option come into play. I think I will discuss this with thorsten and maybe we decide to do some code changes in pam_cracklib. The problem is only, that we both are involved in other important projects now. Jiri: If you want to change "1.", than please check for number >= 6 . Or wait some weeks. Maybe we can provide other options. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.