View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0000019 | Main CAcert Website | my account | public | 2005-09-06 19:26 | 2013-01-13 13:46 |
Reporter | homer | Assigned To | |||
Priority | normal | Severity | trivial | Reproducibility | always |
Status | closed | Resolution | no change required | ||
Fixed in Version | 2006 | ||||
Summary | 0000019: Password Requirements | ||||
Description | Your password is "validated" when created. Validation means checking if it contains (it has to to validate): * a alpha character in it * a numeric character in it * a special character in it * (maybe more, this list is from memory) This means if you want to brute force such a password you do not need to check any password that does not follow the above mentioned rules. This makes the search space smaller and the cracking of the password faster. | ||||
Tags | No tags attached. | ||||
Reviewed by | |||||
Test Instructions | |||||
|
If anything this will foil common dictionary attacks, so while the brute force time may be decreased slightly, over all this increases security because it forces people to use characters they may not normally use, or forces them to use longer passwords etc... |
Date Modified | Username | Field | Change |
---|---|---|---|
2005-09-06 19:26 | homer | New Issue | |
2006-08-15 03:55 | duane | Status | new => needs work |
2006-08-15 03:55 | duane | Assigned To | => homer |
2006-08-15 03:57 | duane | Status | needs work => solved? |
2006-08-15 03:57 | duane | Resolution | open => no change required |
2006-08-15 03:57 | duane | Note Added: 0000486 | |
2007-10-24 06:10 | evaldo | Status | solved? => closed |
2013-01-13 13:46 | Werner Dworak | Assigned To | homer => |
2013-01-13 13:46 | Werner Dworak | Fixed in Version | => 2006 |