This might show up twice, I think I sent it from a bad address previously. If so, please accept my apologies. In Fedora 22, one developer (and only one) decided that if the password chosen during installation wasn't of sufficient strength, the install wouldn't continue. A bug was filed, and there was also a great deal of aggravation about it on the Fedora testing list. So, it was dropped. However, like a US (and probably other countries) politician who has one bad law suddenly exposed, it seems they are doing it for F23, judging from a test installation. I've filed a bug if anyone wants to chime in and ask them not to do it. https://bugzilla.redhat.com/show_bug.cgi?id=1246771 -- Scott Robbins PGP keyID EB3467D6 ( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 ) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6
On Sat, Jul 25, 2015 at 9:40 AM, Scott Robbins <scottro at nyc.rr.com> wrote:> This might show up twice, I think I sent it from a bad address previously. > If so, please accept my apologies. > > > In Fedora 22, one developer (and only one) decided that if the password > chosen during installation wasn't of sufficient strength, the install > wouldn't continue. A bug was filed, and there was also a great deal of > aggravation about it on the Fedora testing list. So, it was dropped. > > However, like a US (and probably other countries) politician who has one > bad law suddenly exposed, it seems they are doing it for F23, judging from > a test installation. I've filed a bug if anyone wants to chime in and ask > them not to do it. > > https://bugzilla.redhat.com/show_bug.cgi?id=1246771This is a good write up on the story: https://lwn.net/Articles/639405/ And the proposal for Fedora 23: https://fedoraproject.org/wiki/Changes/Standardized_passphrase_policy And the discussion for Workstation's behavior: https://lists.fedoraproject.org/pipermail/desktop/2015-July/012588.html -- Chris Murphy
On Sat, Jul 25, 2015 at 11:16:18AM -0600, Chris Murphy wrote:> On Sat, Jul 25, 2015 at 9:40 AM, Scott Robbins <scottro at nyc.rr.com> wrote: > > This might show up twice, I think I sent it from a bad address previously. > > If so, please accept my apologies. > > > > > > In Fedora 22, one developer (and only one) decided that if the password > > chosen during installation wasn't of sufficient strength, the install > > wouldn't continue. A bug was filed, and there was also a great deal of > > aggravation about it on the Fedora testing list. So, it was dropped. > > > > However, like a US (and probably other countries) politician who has one > > bad law suddenly exposed, it seems they are doing it for F23, judging from > > a test installation. I've filed a bug if anyone wants to chime in and ask > > them not to do it. > > > > https://bugzilla.redhat.com/show_bug.cgi?id=1246771 > > This is a good write up on the story: > https://lwn.net/Articles/639405/ > > And the proposal for Fedora 23: > https://fedoraproject.org/wiki/Changes/Standardized_passphrase_policy > > And the discussion for Workstation's behavior: > https://lists.fedoraproject.org/pipermail/desktop/2015-July/012588.htmlKevin Fenzi responded to my post on Fedora testing saying that at least it is FESCO decisions this time, not just a one man one, and asked for patience. (My knee-jerk response is why are they even discussing it after last time, but I refrained.) Thank you for the links Chris. -- Scott Robbins PGP keyID EB3467D6 ( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 ) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6
On Sat, 25 Jul 2015 11:16:18 -0600 Chris Murphy <lists at colorremedies.com> wrote:> On Sat, Jul 25, 2015 at 9:40 AM, Scott Robbins <scottro at nyc.rr.com> wrote: > > This might show up twice, I think I sent it from a bad address previously. > > If so, please accept my apologies. > > > > > > In Fedora 22, one developer (and only one) decided that if the password > > chosen during installation wasn't of sufficient strength, the install > > wouldn't continue. A bug was filed, and there was also a great deal of > > aggravation about it on the Fedora testing list. So, it was dropped. > > > > However, like a US (and probably other countries) politician who has one > > bad law suddenly exposed, it seems they are doing it for F23, judging from > > a test installation. I've filed a bug if anyone wants to chime in and ask > > them not to do it. > > > > https://bugzilla.redhat.com/show_bug.cgi?id=1246771 > > This is a good write up on the story: > https://lwn.net/Articles/639405/ > > And the proposal for Fedora 23: > https://fedoraproject.org/wiki/Changes/Standardized_passphrase_policy > > And the discussion for Workstation's behavior: > https://lists.fedoraproject.org/pipermail/desktop/2015-July/012588.html > >Something like this? Sorry, your password has been in use for 30 days and has expired - you must register a new one." New password roses "Sorry, too few characters." pretty roses "Sorry, you must use at least one numerical character." 1 pretty rose "Sorry, you cannot use blank spaces." 1prettyrose "Sorry, you must use at least 10 different characters." 1fuckingprettyrose "Sorry, you must use at least one upper case character." 1FUCKINGprettyrose "Sorry, you cannot use more than one upper case character consecutively." 1FuckingPrettyRose "Sorry, you must use no fewer than 20 total characters." 1FuckingPrettyRoseShovedUpYourAssIfYouDon'tGiveMeAccessRightFuckingNow! "Sorry, you cannot use punctuation." 1FuckingPrettyRoseShovedUpYourAssIfYouDontGiveMeAccessRightFuckingNow "Sorry, that password is already in use." BR, Bob Who thinks the password policy in my machines are my concern.
On Jul 25, 2015, at 9:40 AM, Scott Robbins <scottro at nyc.rr.com> wrote:> > This might show up twice, I think I sent it from a bad address previously. > If so, please accept my apologies.I?d rather have your apology for trying to raise a zombie: https://www.mail-archive.com/centos%40centos.org/msg108580.html We already had this argument. The terms haven?t changed, so why would the results be different?