security entropy

webopti · 23. August 2023

Hey we're just installed liveconfig and ran in something we'd like to have more secured:

if you create an account you have to reach a strongness level for your password which is great, the problem here is that it's required to have to variate between special chars etc to make a password strong.

The length is not really a topic, so a 40 bit password with only letters is not strong enough for your algorithm, even though it has a way higher entropy than a 12 bit password with symbols and numbers.

Could you consider changing that or at least let the admin deal with the minimum requirements of a secure password?

https://xkcd.com/936/

Azoul · 24. August 2023

https://www.liveconfig.com/de/…omization/lcdefaults.html

You can change the default values for all different kinds of passwords via LCDEFAULTS

webopti · 31. August 2023

thanks a lot!

Zitat von Azoul

https://www.liveconfig.com/de/…omization/lcdefaults.html

You can change the default values for all different kinds of passwords via LCDEFAULTS

kk · 5. September 2023

By the way (especially referring to the well-known XKCD strip): the next major release (v3) will actually make use of diceware-like passwords.

(we even try to support local language dictionaries).

Jetzt mitmachen!