[
https://issues.apache.org/jira/browse/OFBIZ-4958?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13414025#comment-13414025
]
Jacques Le Roux commented on OFBIZ-4958:
----------------------------------------
5 chars is really a minimum, for production backend I use passwords lengths >
18 chars with at least a special char. Anyway having a pattern in
security.properties sounds like a good idea indeed.
Interesting: http://en.wikipedia.org/wiki/Password_strength#Password_policy
HTH
> Additional Validation for Password : Make password pattern driven
> ------------------------------------------------------------------
>
> Key: OFBIZ-4958
> URL: https://issues.apache.org/jira/browse/OFBIZ-4958
> Project: OFBiz
> Issue Type: Sub-task
> Components: ALL COMPONENTS
> Affects Versions: SVN trunk
> Reporter: Sumit Pandit
> Fix For: SVN trunk
>
>
> Providing an additional validation for password -
> Idea is to achieve following -
> * Insist user to provide a stronger login password for additional protection.
> * User's password need to match a pre-defined Pattern.
> * Password pattern can change any time.
> * Validation should applied for new user creation and update password
> processes.
> --
> Thanks And Regards
> Sumit Pandit
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
