Issue 11100

Title
Remove entropy check on password
Priority
feature
Status
testing
Nosy list
ced, reviewbot
Assigned to
ced
Keywords
review

Created on 2021-12-29.19:28:18 by ced, last changed 3 weeks ago by reviewbot.

Messages

Author: [hidden] (ced) Tryton committer Tryton translator
Date: 2021-12-29.19:28:18

It seems that computing entropy (which we did badly) is not very pertinent: https://security.stackexchange.com/a/193182. Also it is not in the recommendation of NIST.
So it seems better to include in the forbidden passwords the repetitive and sequential common passwords.

History
Date User Action Args
2021-12-29 19:50:59reviewbotsetmessages: + msg72999
nosy: + reviewbot
2021-12-29 19:30:01cedsetkeyword: + review
reviews: 376341002
status: in-progress -> testing
2021-12-29 19:28:18cedcreate

Showing 10 items. Show all history (warning: this could be VERY long)