[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Savannah-users] password must be more complicated
|
From: |
Ineiev |
|
Subject: |
Re: [Savannah-users] password must be more complicated |
|
Date: |
Fri, 17 May 2013 16:06:49 +0000 |
On 05/13/2013 11:19 PM, Jan Owoc wrote:
Until this thread surfaced, I didn't know that a program like
pwqcheck existed, let alone what the phrase "pwqcheck options are:
'match=0 max=256 min=24,24,11,8,7' " meant. I wanted to point out that
a large portion of websites that require users to generate passwords
either:
A) have rules written out in human-readable form on what is an
acceptable password (eg. have all 4 of these character classes AND be
7 characters long, or have 3 of 3 character classes AND be 8
characters long, or be at least 24 characters long); the user can then
count the characters in the password they've invented or generated,
and know if it would pass
Something like attached?
diff --git a/frontend/php/include/account.php b/frontend/php/include/account.php
index e757500..70db623 100644
--- a/frontend/php/include/account.php
+++ b/frontend/php/include/account.php
@@ -23,14 +23,110 @@
require_once(dirname(__FILE__).'/pwqcheck.php');
+function expand_pwqcheck_options() {
+ global $pwqcheck_args;
+
+ $args = $pwqcheck_args." ";
+ $help = "";
+
+ if(preg_match("/max=([[:digit:]]*) /", $args, $matches)) {
+ $help .= "<br />\n";
+ $help .= sprintf(_("The maximum allowed password length: %s."),
+ $matches[1]);
+ }
+
+ if(preg_match("/passphrase=([[:digit:]]*) /", $args, $matches)) {
+ $help .= "<br />\n";
+ $help .= sprintf(_("The number of words required for a passphrase: %s."),
+ $matches[1]);
+ }
+
+ if(preg_match("/match=([[:digit:]]*) /", $args, $matches)) {
+ $help .= "<br />\n";
+ if($matches[1]) {
+ $help .= sprintf(_(<<<EOF
+The length of common substring required to conclude that a password
+is at least partially based on information found in a character string: %s.
+EOF
+ ), $matches[1]);
+ } else {
+ $help .= _("Checks for common substrigs are disabled.");
+ }
+ } # preg_match($args, "/match=([^ ]*)/ ", $matches)
+
+ $field = "([[:digit:]]*|disabled)";
+ if(preg_match("/min=".$field.",".$field.",".$field.",".$field.",".$field."
/",
+ $args, $matches)) {
+ $help .= "<br />\n";
+ if($matches[1] == "disabled") {
+ $help .=
+ _("Passwords consisting of characters from one class only are not
allowed.");
+ } else {
+ $help .= sprintf(_(<<<EOF
+The minimum length for passwords consisting from characters of one class: %s.
+EOF
+ ), $matches[1]);
+ }
+ $help .= "<br />\n";
+ if($matches[2] == "disabled") {
+ $help .= _(<<<EOF
+Passwords consisting of characters from two classes that don't meet
+requirements for passphrases are not allowed.
+EOF
+ );
+ } else {
+ $help .= sprintf(_(<<<EOF
+The minimum length for passwords consisting from characters of two classes
+that don't meet requirements for passphrases: %s.
+EOF
+ ), $matches[2]);
+ }
+ $help .= "<br />\n";
+ if($matches[3] == "disabled") {
+ $help .= _("Check for passphrases is disabled.");
+ } else {
+ $help .=
+ sprintf(_("The minimum length for passphrases: %s."), $matches[3]);
+ }
+ $help .= "<br />\n";
+ if($matches[4] == "disabled") {
+ $help .= _(<<<EOF
+Passwords consisting of characters from three classes are not allowed.
+EOF
+ );
+ } else {
+ $help .= sprintf(_(<<<EOF
+The minimum length for passwords consisting from characters
+of three classes: %s.
+EOF
+ ), $matches[4]);
+ }
+ $help .= "<br />\n";
+ if($matches[5] == "disabled") {
+ $help .= _(<<<EOF
+Passwords consisting of characters from four classes are not allowed.
+EOF
+ );
+ } else {
+ $help .= sprintf(_(<<<EOF
+The minimum length for passwords consisting from characters
+of four classes: %s.
+EOF
+ ), $matches[5]);
+ }
+ } # preg_match("/min=".$field.",".$field.",".$field.",".$field.",".$field."
/",
+ return $help;
+}
+
function account_password_help() {
global $use_pwqcheck, $pwqcheck_args;
$help = _("(long enough or containing multiple character classes: symbols,
digits (0-9), upper and lower case letters)");
if ($use_pwqcheck) {
$pwqgen = exec("pwqgen");
$help .= " ".sprintf(_("(for instance: %s)."), htmlspecialchars($pwqgen));
- $help .= " ".sprintf(_("pwqcheck options are: '%s'"),
+ $help .= " ".sprintf(_("pwqcheck options are '%s'"),
htmlspecialchars($pwqcheck_args));
+ $help .= expand_pwqcheck_options();
}
return $help;
}
- Re: [Savannah-users] password must be more complicated, (continued)
- Re: [Savannah-users] password must be more complicated, Karl Berry, 2013/05/07
- Re: [Savannah-users] password must be more complicated, Jan Owoc, 2013/05/08
- Re: [Savannah-users] password must be more complicated, Bob Proulx, 2013/05/13
- Re: [Savannah-users] password must be more complicated, Jan Owoc, 2013/05/13
- Re: [Savannah-users] password must be more complicated, Bob Proulx, 2013/05/15
- Re: [Savannah-users] password must be more complicated,
Ineiev <=
- Re: [Savannah-users] password must be more complicated, Ineiev, 2013/05/14
Re: [Savannah-users] password must be more complicated, Bruce Korb, 2013/05/09