Return-Path: X-Original-To: apmail-cloudstack-dev-archive@www.apache.org Delivered-To: apmail-cloudstack-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id D472A114E7 for ; Fri, 18 Jul 2014 16:13:51 +0000 (UTC) Received: (qmail 91155 invoked by uid 500); 18 Jul 2014 16:13:51 -0000 Delivered-To: apmail-cloudstack-dev-archive@cloudstack.apache.org Received: (qmail 91110 invoked by uid 500); 18 Jul 2014 16:13:51 -0000 Mailing-List: contact dev-help@cloudstack.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@cloudstack.apache.org Delivered-To: mailing list dev@cloudstack.apache.org Received: (qmail 91087 invoked by uid 99); 18 Jul 2014 16:13:50 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 18 Jul 2014 16:13:50 +0000 X-ASF-Spam-Status: No, hits=-2.3 required=5.0 tests=RCVD_IN_DNSWL_MED,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of Damoder.Reddy@citrix.com designates 103.14.252.240 as permitted sender) Received: from [103.14.252.240] (HELO SMTP.CITRIX.COM.AU) (103.14.252.240) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 18 Jul 2014 16:13:49 +0000 X-IronPort-AV: E=Sophos;i="5.01,686,1400025600"; d="scan'208";a="8190038" Received: from sinaccessns.citrite.net (HELO SINPEX01CL01.citrite.net) ([10.151.60.9]) by sinpip01.citrite.net with ESMTP; 18 Jul 2014 16:13:23 +0000 Received: from SINPEX01CL03.citrite.net ([169.254.3.175]) by SINPEX01CL01.citrite.net ([169.254.1.239]) with mapi id 14.03.0181.006; Sat, 19 Jul 2014 00:13:22 +0800 From: Damoder Reddy To: "dev@cloudstack.apache.org" Subject: Re: [PROPOSAL] Adding a plugin to check the password strength of all users Thread-Topic: [PROPOSAL] Adding a plugin to check the password strength of all users Thread-Index: AQHPok3i/6bYHzKtmk+yUhHy693rJZul0fDK//+ptwA= Date: Fri, 18 Jul 2014 16:13:21 +0000 Message-ID: <95F76D2C-1372-48DB-B352-7B8A321CF74D@citrix.com> References: <1FCB29E4-339A-4B9B-9039-19872C75BEB7@citrix.com> <43A11A1933FEF445A080F7D886872646163827E7@SJCPEX01CL01.citrite.net> In-Reply-To: <43A11A1933FEF445A080F7D886872646163827E7@SJCPEX01CL01.citrite.net> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.13.112.14] Content-Type: text/plain; charset="us-ascii" Content-ID: <765318BBDD289541B4B67947BF4B0640@citrix.com> Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-DLP: SIN1 X-Virus-Checked: Checked by ClamAV on apache.org Will show the strength of the password as well. On 18-Jul-2014, at 6:53 pm, Demetrius Tsitrelis wrote: > Will the plugin merely show the strength of the password or will the plug= in prevent the use of weak passwords? >=20 > ________________________________________ > From: Damoder Reddy [Damoder.Reddy@citrix.com] > Sent: Thursday, July 17, 2014 11:02 PM > To: dev@cloudstack.apache.org > Subject: [PROPOSAL] Adding a plugin to check the password strength of all= users >=20 > Hi all, >=20 > I am thinking to add a plugin which enables to check the password strengt= h of a user while setting/resetting the password for that user. > why as a plugin because different companies may have a different rule set= s to check the password strength. >=20 > The default implementation will have the password strength calculation ba= sed on the following parameters > 1. Length of the password > 2. Number of Character Sets involved in the password defined. For ex, Upp= er Case Letter, Lower Case letter, Digits and special character set. >=20 > Ay suggestions/Comments? >=20 > Thanks > Damoder