The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Force Users To Use Better Passwords?

Discussion in 'General Discussion' started by bmcpanel, Feb 26, 2007.

  1. bmcpanel

    bmcpanel Well-Known Member

    Joined:
    Jun 1, 2002
    Messages:
    546
    Likes Received:
    0
    Trophy Points:
    16
    Maybe I am wrong, but I thought there was a setting in WHM to force users to use strong passwords that are less easy to guess. Can someone direct me to the location of this feature if it exists? I've done a search on the forum and cannot seem to find this feature in WHM.

    Thanks.
     
  2. bmcpanel

    bmcpanel Well-Known Member

    Joined:
    Jun 1, 2002
    Messages:
    546
    Likes Received:
    0
    Trophy Points:
    16
    Can someone take a stab at this and let me know if there is such a feature in WHM?
     
  3. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    cPanel and WHM forces all users to use strong passwords. This is not a feature that can be disabled.
     
  4. bmcpanel

    bmcpanel Well-Known Member

    Joined:
    Jun 1, 2002
    Messages:
    546
    Likes Received:
    0
    Trophy Points:
    16
    By default. Got it. Thanks.
     
  5. jpetersen

    jpetersen Well-Known Member

    Joined:
    Dec 31, 2006
    Messages:
    113
    Likes Received:
    4
    Trophy Points:
    18
    No, actually, they don't. What they enforce is not using a password that contains the username. Perhaps they enforce other things, but they absolutely do not force the use of strong passwords.
     
  6. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,458
    Likes Received:
    22
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    We do in EDGE, which will be cPanel 11. Dictionary words, username, length are all checkd and enforced by default. Rather annoying for testing purposes, but more effective than current.
     
  7. jpetersen

    jpetersen Well-Known Member

    Joined:
    Dec 31, 2006
    Messages:
    113
    Likes Received:
    4
    Trophy Points:
    18
    That is really great news! The entire process of password auditing, and contacting and following up with customers is very time consuming. Weak passwords introduce significant threats to server security, and I am extremely pleased to hear that this has finally made its way into cPanel. Thanks for the info, and thanks for being active on the forums. Your posts are always very informative.
     
Loading...

Share This Page