Re: Root Forced to Comply With Password Complexity Requirements

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

+1 - with the asininities being reported for Centos 8 and now Fedora it's probably time to look for me on some other distribution.
If I want an all text no caps no punctuation no numbers password 102 characters long let me do it. *I* am the one who suffers not you dweebs. Doing it my way I have gone online since 1980 without any problems and on computers since 1962* without being hacked. I must be doing something right. If I arrange the computer so that it requires a minute between password trials how long would it take to guess "grimreap" and hack my system? How long do you think that source of hacking attempts would have enough access to get to a password prompt. THAT is security not stupid password rule enforcement which leads to forgotten passwords. 

{^_^}   Joanne
* At University of Michigan as a freshman taking the Michigan Arden Decoder class er 'scuse me - Michigan Algorithm Decoder. 

On 20191102 08:05:28, Garry T. Williams wrote:

On Saturday, November 2, 2019 5:56:53 AM EDT Tim via users wrote:

On Fri, 2019-11-01 at 12:38 -0400, Garry Williams wrote:

The root user cannot set whatever password he wants on his machine?
Since when?

I wanted to assign a temporary password for a new user and then do

     sudo passwd -e ppatel

to force it to be changed.  For the new user, enforcing password
complexity is, I guess, OK.  But for root?


If any user should need the enforcement of good passwords, it's the
root user.  If your PC was on a LAN where crackers can have a go at
you, this could be very important.  It does not take long for someone
to mess up a system if they can get in.  It's better to be safe than
sorry.  To me the obvious thing is to simply pick a better password.
e.g. Just make it two words long instead of one.


I was setting a (temporary) password for another user -- not setting
the root password.

But I guess your comment helps me to understand why these changes
happen.  I cannot be trusted to operate my machine safely without
someone else's help.  I may harm myself, so I am not allowed to set a
(temporary) password to whatever I want.

I probably shouldn't be allowed to type the rm command without some
sort of "are you sure?" warning either.

Sigh.


_______________________________________________
users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [EPEL Devel]     [Fedora Magazine]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Desktop]     [Fedora Fonts]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Fedora Sparc]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux