Changes

From SME Server
Jump to navigationJump to search
Password strength section added
Line 312: Line 312:  
Don't remove or rename .junkmail folders.
 
Don't remove or rename .junkmail folders.
    +
 +
===Password Strength Checking===
 +
*How can I change password strength & what do the strength settings mean?
 +
 +
 +
You are strongly advised not to use weak passwords on your sme server as this only reduces security.
 +
 +
Note also that pam authentication requires that passwords be at least 7 characters long, so setting a password that is shorter than that may cause other problems later.
 +
 +
 +
The available setting choices are:
 +
 +
strong = The password is passed through Cracklib for dictionary type word checking as well as requiring upper case, lower case, number, non alpha & 7 characters.
 +
 +
normal = The password requires upper case, lower case, number, non alpha & 7 characters.
 +
 +
none = The password can be anything as no checking is done.
 +
Please note that "none" does not mean no password, it just means no password strength checking, so you can enter any (weak) password you want.
 +
 +
 +
To set password strength do:
 +
config setprop passwordstrength Admin strengthvalue
 +
config setprop passwordstrength Users strengthvalue
 +
config setprop passwordstrength Ibays strengthvalue
 +
where strengthvalue = strong  or  normal  or  none
 +
 +
 +
eg Although strongly discouraged, to disable password strength checking for Users do:
 +
config setprop passwordstrength Users none
 +
 +
To review the current settings do:
 +
config show passwordstrength
 +
 +
which should display something like:
 +
 +
passwordstrength=configuration
 +
 +
Admin=strong
 +
 +
Ibays=strong
 +
 +
Users=strong
 +
 +
 +
References:
 +
https://sourceforge.net/tracker/?func=detail&atid=615772&&aid=1228269&group_id=96750
 +
http://bugs.contribs.org/show_bug.cgi?id=161
    
===Hard Drives, RAID's, USB Hard Drives===
 
===Hard Drives, RAID's, USB Hard Drives===
624

edits

Navigation menu