You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@cloudstack.apache.org by Gaspare A Silvestri <g....@netsons.com> on 2013/08/06 12:29:15 UTC
Guest VM password reset - Complexity
Hello everybody,
is therea way to improve the password complexity when generating a
password using the reset guest password script?
Thanks in advance,
Gaspare
RE: Guest VM password reset - Complexity
Posted by Adrian Lewis <ad...@alsiconsulting.co.uk>.
Ah - my bad. Hadn't read the message properly - thought this was regarding
CS user account passwords.
-----Original Message-----
From: Ian Duffy [mailto:ian@ianduffy.ie]
Sent: 06 August 2013 13:03
To: users@cloudstack.apache.org
Subject: Re: Guest VM password reset - Complexity
> Is this something that you might be looking to change?
Me personally no... Somebody on devs@ might have an opinion about it...
> I would have thought that people looking to implement your LDAP work
> will be interested in it from a security point of view so having
> password complexity rules would also be of significant interest,
> especially if there's a similar requirement enforced at the LDAP side
Account passwords and instance passwords are very separate. One would hope
that the instance passwords given via the "reset" function are purely
throw-away/use-once passwords.
On 6 August 2013 12:52, Adrian Lewis <ad...@alsiconsulting.co.uk> wrote:
> Hi Ian,
>
> Is this something that you might be looking to change? I would have
> thought that people looking to implement your LDAP work will be
> interested in it from a security point of view so having password
> complexity rules would also be of significant interest, especially if
> there's a similar requirement enforced at the LDAP side. Something for 4.3
> perhaps?
>
> Adrian
>
> -----Original Message-----
> From: Ian Duffy [mailto:ian@ianduffy.ie]
> Sent: 06 August 2013 12:07
> To: users@cloudstack.apache.org
> Subject: Re: Guest VM password reset - Complexity
>
> Hi Gaspare,
>
> As far as I'm aware there is no way to do this without modifying the
> source.
>
> The generation of password resets are handled by this piece of code:
> https://git-wip-us.apache.org/repos/asf?p=cloudstack.git;a=blob;f=util
> s/src/com/cloud/utils/PasswordGenerator.java;h=022afd0d8bda7eaba84a8b6
> 7c595e676158837d4;hb=HEAD
>
> It is hard coded to generate passwords of length 6.
>
> Hope this helps,
> Ian
>
> On 6 August 2013 11:29, Gaspare A Silvestri <g....@netsons.com>
> wrote:
>> Hello everybody,
>>
>> is therea way to improve the password complexity when generating a
>> password using the reset guest password script?
>>
>> Thanks in advance,
>>
>> Gaspare
>>
Re: Guest VM password reset - Complexity
Posted by Ian Duffy <ia...@ianduffy.ie>.
> Is this something that you might be looking to change?
Me personally no... Somebody on devs@ might have an opinion about it...
> I would have thought that people looking to implement your LDAP work will be interested in it from a security point of view so having password complexity rules would also be of significant interest, especially if there's a similar requirement enforced at the LDAP side
Account passwords and instance passwords are very separate. One would
hope that the instance passwords given via the "reset" function are
purely throw-away/use-once passwords.
On 6 August 2013 12:52, Adrian Lewis <ad...@alsiconsulting.co.uk> wrote:
> Hi Ian,
>
> Is this something that you might be looking to change? I would have thought
> that people looking to implement your LDAP work will be interested in it
> from a security point of view so having password complexity rules would also
> be of significant interest, especially if there's a similar requirement
> enforced at the LDAP side. Something for 4.3 perhaps?
>
> Adrian
>
> -----Original Message-----
> From: Ian Duffy [mailto:ian@ianduffy.ie]
> Sent: 06 August 2013 12:07
> To: users@cloudstack.apache.org
> Subject: Re: Guest VM password reset - Complexity
>
> Hi Gaspare,
>
> As far as I'm aware there is no way to do this without modifying the source.
>
> The generation of password resets are handled by this piece of code:
> https://git-wip-us.apache.org/repos/asf?p=cloudstack.git;a=blob;f=utils/src/com/cloud/utils/PasswordGenerator.java;h=022afd0d8bda7eaba84a8b67c595e676158837d4;hb=HEAD
>
> It is hard coded to generate passwords of length 6.
>
> Hope this helps,
> Ian
>
> On 6 August 2013 11:29, Gaspare A Silvestri <g....@netsons.com> wrote:
>> Hello everybody,
>>
>> is therea way to improve the password complexity when generating a
>> password using the reset guest password script?
>>
>> Thanks in advance,
>>
>> Gaspare
>>
RE: Guest VM password reset - Complexity
Posted by Adrian Lewis <ad...@alsiconsulting.co.uk>.
Hi Ian,
Is this something that you might be looking to change? I would have thought
that people looking to implement your LDAP work will be interested in it
from a security point of view so having password complexity rules would also
be of significant interest, especially if there's a similar requirement
enforced at the LDAP side. Something for 4.3 perhaps?
Adrian
-----Original Message-----
From: Ian Duffy [mailto:ian@ianduffy.ie]
Sent: 06 August 2013 12:07
To: users@cloudstack.apache.org
Subject: Re: Guest VM password reset - Complexity
Hi Gaspare,
As far as I'm aware there is no way to do this without modifying the source.
The generation of password resets are handled by this piece of code:
https://git-wip-us.apache.org/repos/asf?p=cloudstack.git;a=blob;f=utils/src/com/cloud/utils/PasswordGenerator.java;h=022afd0d8bda7eaba84a8b67c595e676158837d4;hb=HEAD
It is hard coded to generate passwords of length 6.
Hope this helps,
Ian
On 6 August 2013 11:29, Gaspare A Silvestri <g....@netsons.com> wrote:
> Hello everybody,
>
> is therea way to improve the password complexity when generating a
> password using the reset guest password script?
>
> Thanks in advance,
>
> Gaspare
>
Re: Guest VM password reset - Complexity
Posted by Ian Duffy <ia...@ianduffy.ie>.
Hi Gaspare,
As far as I'm aware there is no way to do this without modifying the source.
The generation of password resets are handled by this piece of code:
https://git-wip-us.apache.org/repos/asf?p=cloudstack.git;a=blob;f=utils/src/com/cloud/utils/PasswordGenerator.java;h=022afd0d8bda7eaba84a8b67c595e676158837d4;hb=HEAD
It is hard coded to generate passwords of length 6.
Hope this helps,
Ian
On 6 August 2013 11:29, Gaspare A Silvestri <g....@netsons.com> wrote:
> Hello everybody,
>
> is therea way to improve the password complexity when generating a password
> using the reset guest password script?
>
> Thanks in advance,
>
> Gaspare
>
Re: Guest VM password reset - Complexity
Posted by Sean Hamilton <se...@seanhamilton.co.uk>.
I'd like to see this configurable though. Some users don't like a password
that is too complex.
On 6 August 2013 13:21, Nux! <nu...@li.nux.ro> wrote:
> On 06.08.2013 11:29, Gaspare A Silvestri wrote:
>
>> Hello everybody,
>>
>> is therea way to improve the password complexity when generating a
>> password using the reset guest password script?
>>
>
> +1 for making the password more complex. It needs more characters and
> maybe some symbols, too.
>
> --
> Sent from the Delta quadrant using Borg technology!
>
> Nux!
> www.nux.ro
>
Re: Guest VM password reset - Complexity
Posted by Nux! <nu...@li.nux.ro>.
On 06.08.2013 11:29, Gaspare A Silvestri wrote:
> Hello everybody,
>
> is therea way to improve the password complexity when generating a
> password using the reset guest password script?
+1 for making the password more complex. It needs more characters and
maybe some symbols, too.
--
Sent from the Delta quadrant using Borg technology!
Nux!
www.nux.ro