May 1, 2020 Roberto Puzzanghera 2 comments
A big lack of
qmail account managers, expecially
qmailadmin, is that they do not provide any password complexity check. A couple of days ago I discovered in one of my servers a "test 123456" account and I realized that the time had come to put a patch on it.
Since I had no luck in having
cracklib working inside
qmailadmin (any help on the purpose would be veeerrry much appreciated) I've quickly found a solution via a
pw_strenght_chk.js in the html dir.
apache clamav dkim dovecot ezmlm fail2ban hacks lamp letsencrypt linux linux-vserver lxc mariadb mediawiki mozilla mysql openboard owncloud patches php proftpd qmail qmail to postfix qmail-spp qmailadmin rbl roundcube rsync sieve simscan slackware solr spamassassin spf ssh ssl surbl tcprules tex ucspi-tcp vpopmail vqadmin