The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Password Strength Configuration and account transfer

Discussion in 'Security' started by krisdv, Jul 10, 2014.

  1. krisdv

    krisdv Well-Known Member

    Joined:
    Jun 18, 2003
    Messages:
    175
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Belgium
    Just wondering, when the password strenght configuration has been enabled for new accounts would this block an account transfer from another server for an account that has a weak cpanel password?
     
  2. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    942
    Likes Received:
    57
    Trophy Points:
    28
    cPanel Access Level:
    DataCenter Provider
    I am just speculating but it probably would not block it. Passwords aren't stored in plain text, they are hashed, so there would not be an easy way to re-check the password strength while transferring an account. Unless cPanel data stores the complexity rank/score at the time the password was set, it would have no idea from just the password hash if a strong password was used or not.
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,854
    Likes Received:
    675
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    The "Password Strength" requirement only applies to new accounts. It will not prevent transfers of existing accounts from other servers based on weak passwords.

    Thank you.
     
Loading...

Share This Page