Vesta password policy Topic is solved

[mlopez]

1. Where can I find and how can I modify passwords policies, I mean, the constraints/restrictions applied to passwords for mail accounts when entered in panel?

2. Is there a way to raise the number of characters of generated passwords?

Thank you
ML

[skurudo]

/root/vesta/func/main.sh

Code: Select all

# Random password generator
generate_password() {
    matrix=$1
    lenght=$2
    if [ -z "$matrix" ]; then
        matrix=0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz
    fi
    if [ -z "$lenght" ]; then
        lenght=10
    fi
    i=1
    while [ $i -le $lenght ]; do
        pass="$pass${matrix:$(($RANDOM%${#matrix})):1}"
       ((i++))
    done
    echo "$pass"
}

[mlopez]

Thank you, skurudo, but the web-interface has no restrictions at all! You can add a one character password for email accounts, i.e.
And also you can add an email account from cli using this:

Code: Select all

v-add-mail-account myuser example.com peter e

[skurudo]

Thank you, skurudo, but the web-interface has no restrictions at all! You can add a one character password for email accounts,

mlopez, some admins/users like simple stuff.. do you think we should resrict all like Apple? It's a choice for everyone.

[mlopez]

mlopez, some admins/users like simple stuff.. do you think we should resrict all like Apple? It's a choice for everyone.

No way! I think that, as a security measure Vesta CP should offer a way for the administrator to set the passwords restrictions for users.
Hosting (final) users don't necessarily know or care about server security or passwords policies, but in order to accomplish standard security procedures, as a sysadmin I must establish them. Dont' you think, skurudo?

Anyway, where can I add this password restrictions?

Thank you for your attention!