Well-Known Member
Jul 23, 2004
cPanel Access Level
Root Administrator
So it seems the idea of passwords being made up of upper and lower-case letters, numbers and symbols is/was wrong according to Bill Burr, the man who created the original password standards in 2003. Read article Ideal Passwords
Basically a password like “Tr0ub4dor&3” can be cracked in three days but a password like “correcthorsebatterystaple” would take a computer 550 years to crack. So will cPanel now be changing their password strength configuration advice?
"A strong password is very important to maintain security. Web servers are usually more powerful and have access to greater bandwidth than your personal computer, which makes them a prime target for password crackers.
You can increase the strength of your password by adding UPPER CASE, numbers, and symbol characters (@, #, $, %, etc)."


Staff member
Apr 11, 2011

There's no specific time frame to provide for changes to the existing password generation algorithm, however an existing feature request is open for this at:

Fix password generation algorithm / password meter

I encourage you to add your feedback to this request. We'll provide updates on any planned changes on the feature request page.

Thank you.