search for: ht201303

...ne services are another > matter, those I've made very clear they will be strong or they don't > get to play. The Apple ID password rules are a fair bit stronger than the libpwquality rules we?ve been discussing here, and have been so for some time: https://support.apple.com/en-us/HT201303 Given that recent OS X releases want to use your Apple ID as the OS login credentials, that effectively makes these the OS password quality rules, too. Fedora is late to the party, and CentOS consequently even later.

> On Jul 28, 2015, at 5:46 PM, Warren Young <wyml at etr-usa.com> wrote: > > The Apple ID password rules are a fair bit stronger than the libpwquality rules we?ve been discussing here, and have been so for some time: > > https://support.apple.com/en-us/HT201303 > > Given that recent OS X releases want to use your Apple ID as the OS login credentials, that effectively makes these the OS password quality rules, too. Disingenuous. It does not REQUIRE you to use your AppleID as the user password, and it?s probably not a good practice anyway. Using it...

On Tue, Jul 28, 2015 at 5:29 PM, Warren Young <wyml at etr-usa.com> wrote: > On Jul 28, 2015, at 2:27 PM, Chris Murphy <lists at colorremedies.com> wrote: >> >> On Tue, Jul 28, 2015 at 11:27 AM, Warren Young <wyml at etr-usa.com> wrote: >> >>> Your freedom to use any password you like stops at the point where exercising that freedom creates a risk to

Once upon a time, Warren Young <wyml at etr-usa.com> said: > Much of the evil on the Internet today ? DDoS armies, spam spewers, phishing botnets ? is done on pnwed hardware, much of which was compromised by previous botnets banging on weak SSH passwords. Since most of that crap comes from Windows hosts, the security of Linux SSH passwords seems hardly relevant. > Your freedom to use