View Issue Details

IDProjectCategoryView StatusLast Update
0000019Main CAcert Websitemy accountpublic2013-01-13 13:46
Reporterhomer Assigned To 
Status closedResolutionno change required 
Fixed in Version2006 
Summary0000019: Password Requirements
DescriptionYour password is "validated" when created. Validation means checking if it contains (it has to to validate):


      a alpha character in it

      a numeric character in it

      a special character in it

      (maybe more, this list is from memory)

This means if you want to brute force such a password you do not need to check any password that does not follow the above mentioned rules. This makes the search space smaller and the cracking of the password faster.
TagsNo tags attached.
Reviewed by
Test Instructions



2006-08-15 03:57

developer   ~0000486

If anything this will foil common dictionary attacks, so while the brute force time may be decreased slightly, over all this increases security because it forces people to use characters they may not normally use, or forces them to use longer passwords etc...

Issue History

Date Modified Username Field Change
2005-09-06 19:26 homer New Issue
2006-08-15 03:55 duane Status new => needs work
2006-08-15 03:55 duane Assigned To => homer
2006-08-15 03:57 duane Status needs work => solved?
2006-08-15 03:57 duane Resolution open => no change required
2006-08-15 03:57 duane Note Added: 0000486
2007-10-24 06:10 evaldo Status solved? => closed
2013-01-13 13:46 Werner Dworak Assigned To homer =>
2013-01-13 13:46 Werner Dworak Fixed in Version => 2006