Hi,
I have altered the function at this link
https://www.mail-archive.com/[email protected]/msg35569.html
Added to code to invoke this in the Change Password option, it is working
fine. Also added it to the create new email id, that is also working fine. But,
so far, I am not able to get the modify email id to check for password
strength. I am struggling here, I am not a C programmer. Any help appreciated.
The code is pasted below.
int check_strong(char *pass_string)
{
if(strlen(pass_string) < 10) {
snprintf (StatusMessage, sizeof(StatusMessage), "%s\n", html_text[322]);
return 0;
}
int digit=0;
int lower=0;
int upper=0;
int symbol=0;
int length=strlen(pass_string);
int i;
for(i=0;i<length;i++){
if( digit == 1 && lower == 1 && upper ==1 && symbol==1 ) return 1;
else{
if((pass_string[i]) >= 'a' && (pass_string[i]) <= 'z') l
if((pass_string[i]) >= 'A' && (pass_string[i]) <= 'Z') u
if((pass_string[i]) >= '0' && (pass_string[i]) <= '9') d
if(isdigit(pass_string[i]) == isalpha(pass_string[i])) s
}
}
if( digit == 1 && lower == 1 && upper ==1 && symbol==1 ) return 1;
else{
return 0;
}
}
Best regards
-----Original Message-----
From: Biju Jose [mailto:[email protected]]
Sent: 08 February 2019 20:57
To: [email protected]
Subject: RE: [qmailtoaster] qmailadmin password
Hi All,
Sorry for pulling up an old thread.
I am also having trouble in enforcing strong passwords for qmailtoaster, some
of my users use silly easy to guess passwords and I am having trouble to block
the spams passing thru such accounts.
The qmailadmin needs some updates in this regard, but unfortunately, coding is
not my fort, but I can help in whichever way I can, if someone can come
forward to look at this.
Ideally the password should be minimum of 10 characters, with a combination of
lowercaps, uppercaps, numbers and symbols. It should also not contain the name
part of the email id. The changes we make should stay thru the updates also.
Any thoughts on how to go about this?
Best regards
Biju Jose
-----Original Message-----
From: [email protected] [mailto:[email protected]]
Sent: 21 November 2018 16:33
To: [email protected]
Subject: Re: [qmailtoaster] qmailadmin password
Hi Eric
Thanks for your reply.
Yes, but "1234" is not! I would be happy if at least 9 characters were required.
I know there are some patches for qmailadmin out there, but one of
Qmailtoaster's many advantages is that I do not have to compile at all.
Se for example
https://notes.sagredo.eu/qmail-notes-185/qmailadmin-password-strenght-patch-175.html
or
http://mugurel.sumanariu.ro/qmail/qmailadmin-check-if-password-is-strong-enough/
or
https://www.mail-archive.com/[email protected]/msg35569.html
Sincerely,
Allan Dukat
On 2018-11-20 23:03, Eric Broch wrote:
> Is 16 characters not enough?
>
>
> On 11/20/2018 8:30 AM, [email protected] wrote:
>> Hi List
>>
>> Some of my users' passwords were cracked and my server ended up in
>> some RBLs, so my question is now, will some kind of password policy
>> be implemented in the next realease of Qmailtoaster?
>>
>> Thanks in advance.
>>
>> Sincerely,
>>
>> Allan Dukat
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
