Random password problem with FDS

Endi Sukma Dewata edewata at redhat.com
Tue Mar 9 19:33:38 MST 2010


Hi Andrew,

Currently the provisioning tool generates random password from
the following list of characters (see generate_random_password()):

ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789
+_-#.,@$%&!?:;<=>(){}[]~

Sometimes it generates a password with a "{...}" prefix which
would be incorrectly interpreted as encryption scheme by FDS
tools so the provisioning will fail.

There are several options:

1. Modify generate_random_password() to pick the first character
   from a list of alphanumeric characters only. For the remainders
   it could use the current list.

2. Modify check_password_quality() to require alphanumeric prefix.
   If the randomly generated password doesn't meet this requirement
   it will try to generate a new one.

3. Exclude the {} characters from the list.

Do you have any suggestions? Thanks.

--
Endi S. Dewata


More information about the samba-technical mailing list