[Bug 1044868] Re: Ubuntu should encourage stronger passwords using stronger algorithms, note i18n issues

Sebastian Benvenuti 1044868 at bugs.launchpad.net
Fri Sep 7 05:45:43 UTC 2012

"There are many installations and context where a strong password is not
needed, nor desired by design. E.g. cloud images have passwordless
accounts & passwordless root. Because access to those machines is locked
down via public-key ssh connections. There is no way to know what
authentication context will be used and what is the full security model.
One password will not protect you."

I know. That is why I defined the conditions where the bug appear to be
obvious to me. Not a cloud image, not the server installer, not the
alternate cd installer, the GUI installer from the 32-bit Ubuntu Live CD
installing on a qemu-kvm VM.

You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to ubiquity in Ubuntu.

  Ubuntu should encourage stronger passwords using stronger algorithms,
  note i18n issues

Status in “gnome-control-center” package in Ubuntu:
Status in “ubiquity” package in Ubuntu:
  Won't Fix

Bug description:
  When you set the password during the installation or also when you
  change it via the gnome-control-center you can insert a weak password
  (like "123456" or "qwerty" or "abcdef" or "password" itself) without
  any alerts, or so on.

  The suggestion is a password strength verification that includes the most used passwords (like "1234" or "qwerty") and a dictionary that includes the word password in every language.
  A special attention to language like Spanish where "password" is "contraseña", and where is the character "ñ" which can be recognize as a special symbol.

To manage notifications about this bug go to:

More information about the foundations-bugs mailing list