I don't think it would be difficult to write a password checker that allows you to
check against a badlist of passwords you can configure. Similar, it wouldn't be hard
to do this with something like zxcvbn via rust either.
On 23 Sep 2020, at 02:03, Bryan K. Walton
<bwalton(a)leepfrog.com> wrote:
On Tue, Sep 22, 2020 at 11:58:39AM -0400, Mark Reynolds wrote:
>
> On 9/22/20 11:45 AM, Bryan K. Walton wrote:
>> We are running 389ds with CentOS 8. Can anybody confirm if there is a
>> way to check passwords against the
haveibeenpwned.com database when
>> users are changing passwords?
>
> No, there is only the option to use Cracklib's database for dictionary
> checks. There is no external password checking at this time.
Thank you.
-Bryan
_______________________________________________
389-users mailing list -- 389-users(a)lists.fedoraproject.org
To unsubscribe send an email to 389-users-leave(a)lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproje...
—
Sincerely,
William Brown
Senior Software Engineer, 389 Directory Server
SUSE Labs, Australia