Hi Nathan, Richard,<br>
<br>
I was thinking along the lines of pam_passwdqc, well part of it.<br>
The password should contain at least 3 different character categories.<br>
The categories being: lowercase, uppercase, special characters and numbers<br>
Not specifically a minumum number of uppercase/lowercase/...<br>
Off course there should be no user data in the password, it should not
even contain the username as a substring. But I think that code is
already in CVS. It's checking for cn, givenname, surname, ... attributes<br>
A dictionarry check would be nice but I would maybe make this&nbsp; optional. <br>
I guess that if we make the rules too stringent the enduser may complain<br>
<br>
Greetings,<br>
Jo<br>