Summary | Invalid characters allowed in new password |
Queue | Passwd |
Queue Version | 3.1 |
Type | Enhancement |
State | Resolved |
Priority | 2. Medium |
Owners | jan (at) horde (dot) org |
Requester | Valentin.Vidic (at) carnet (dot) hr |
Created | 07/08/2010 (5453 days ago) |
Due | |
Updated | 10/25/2010 (5344 days ago) |
Assigned | |
Resolved | 10/25/2010 (5344 days ago) |
Milestone | |
Patch | Yes |
Fix class name (
Bug #9130).http://cvs.horde.org/diff.php/passwd/main.php?rt=horde&r1=1.67.2.11&r2=1.67.2.12&ty=u
Fatal error: Class 'Horde_String' not found in passwd/main.php on line 92
But after changing the call to String::length($new_password0) it seems
to work - UTF8 chars are not allowed in the password.
Assigned to Jan Schneider
State ⇒ Feedback
[jan] Verify that new passwords don't contain any invalid (non-ascii)
characters (Valentin Vidic,
Request #9130).http://cvs.horde.org/diff.php/passwd/docs/CHANGES?rt=horde&r1=1.79.2.42&r2=1.79.2.43&ty=u
http://cvs.horde.org/diff.php/passwd/main.php?rt=horde&r1=1.67.2.10&r2=1.67.2.11&ty=u
http://cvs.horde.org/diff.php/passwd/po/passwd.pot?rt=horde&r1=1.30.2.11&r2=1.30.2.12&ty=u
[jan] Verify that new passwords don't contain any invalid (non-ascii)
characters (Valentin Vidic,
Request #9130).http://cvs.horde.org/diff.php/passwd/docs/CHANGES?rt=horde&r1=1.119&r2=1.120&ty=u
http://cvs.horde.org/diff.php/passwd/main.php?rt=horde&r1=1.84&r2=1.85&ty=u
Priority ⇒ 2. Medium
Type ⇒ Enhancement
Summary ⇒ Invalid characters allowed in new password
Queue ⇒ Passwd
Milestone ⇒
Patch ⇒ Yes
New Attachment: passwd.diff
State ⇒ New
than alpha, num, space and symbol so some of our users ended up with
passwords containing UTF8 characters. Since passwords are often used
in various different applications this is not a good idea. Attached is
a patch that introduces a counter for characters not matched by other
ctype classes. In addition to this password charset has to be taken
into account in order to split into characters correctly.