Usability issue when forced to change password when logging in to a system

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



Hi,

What I am about to describe is something that has existed for a very long time, but it is still a usability issue. :)

When logging in to a system and the system detects that the password has expired and needs to change this happens

Login As: Foobar
Password:
Your password has expired. Choose a new password.
Old Pasword:


Now the user has just read the text

"Your password has expired. Choose a new password.".

This means that the user has already started thinking about what password to change to. The mind is set on the new password. And almost always (consistently) the "Old " prefix is lost. You just start typing the new password. And *bam* you are in password change hell and get extremely frustrated as a result.

This has been observed with numerous people.

If you combine this with draconian password policies you are very close to snapping. ;)


In the OpenSSH source code it looks like OpenSSH does not cache and copy the authentication password back to the PAM stack when password change is invoked. Instead OpenSSH gets it again from the tty leading to the above usability issue.

So I am wondering if there is any reason for doing like this? And if not, could this please be fixed in an upcoming release of OpenSSH? Or prehaps there is already a configuration setting for tweaking this behavior?


/John

--

John Olsson
Ericsson AB
GSM BSC/BSS System Management

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev




[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux