Implementing company wide password policy


#1

Hi,

Is there any way to be able to implement complete or partial of a company policy regarding to password policy?

I am thinking about fx.:

Minimum password length
etc…


#2

@mryber: it is currently not possible to define a custom passowrd policy.

We use an automated strong password strength evaluation based on https://github.com/dropbox/zxcvbn
It mixes already a set of checks like the one you are mentioning.

does this answers to you or do you have any suggestion?


#3

@mryber: for suggestions like these feel free to open a ticket directly on github: https://github.com/globaleaks/GlobaLeaks/issues


#4

Yeah, found that in the ‘Application Security Design and Details’ document. Was just curious - but I think that it will do it :slight_smile: Thanks for quick response.