The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Password Strength Configuration explanation

Discussion in 'Security' started by samsmithgaia, Jan 5, 2015.

  1. samsmithgaia

    samsmithgaia Member

    Joined:
    Nov 16, 2011
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    The Password Strength Configuration of 0 to 100 does any one have a explanation of each level as i cannot find one in the cpanel documentation
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,466
    Likes Received:
    196
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Docs for this feature are here:
    Password Strength Configuration - cPanel Documentation

    Can you rephrase that question another way? Do you mean each item listed there on that page in WHM or the 1-100 part?
     
  3. samsmithgaia

    samsmithgaia Member

    Joined:
    Nov 16, 2011
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    i was wondering is level 10 was upper and lower case and 50 is upper and lower case, numbers and symbols requirements for passwords

    as i would like to explain to my customers what type of passwords they need to use, so firstly i would need to know the rules for Password Strength Configuration settings from 1 to 100

    i have looked at Password Strength Configuration page but it does not say what are the password requirements
    http://documentation.cpanel.net/display/1142Docs/Password+Strength+Configuration

    i hope this make my question easier to understand
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,776
    Likes Received:
    663
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    The algorithm used to generate passwords is not available to the public. Generally speaking, higher scores are achieved with longer passwords that have numbers, symbols, and upper-case characters.

    Thank you.
     
  5. velnix

    velnix Member

    Joined:
    Aug 9, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Normal cases password strength depends on randomness ( mixture of letter, Numbers, symbols ) and length of the word. I see Cpanel using letter, number, symbols even at lowest level like 5-6, so it must be the randomness and length of the word that changes.

    Password strength - Wikipedia, the free encyclopedia
     
  6. samsmithgaia

    samsmithgaia Member

    Joined:
    Nov 16, 2011
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    I was looking for the requirements for each level something like

    level
    00-10 must have upper and lower case letters
    10-20 must have upper and lower case letters and numbers
    20-30 must have upper and lower case letters and numbers and be over 10 characters
    40-40 must have upper and lower case letters ,symbols and numbers and be over 15 characters

    etc
     
  7. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,776
    Likes Received:
    663
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    The algorithm used to generate passwords is not available to the public, so we can't provide that information. You may find a third-party website helpful:

    Password Strength Checker

    Thank you.
     
  8. MajorLancelot

    MajorLancelot Registered

    Joined:
    Dec 17, 2014
    Messages:
    4
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Shinjuku-ku, Tokyo, Japan
    cPanel Access Level:
    Root Administrator
    You don't really need to understand how cPanel generates this or the algorithm rules that guides it.
    If you generate a password and it is strong enough, even if it is 8 as Velnix said, cPanel will accept it because it automatically calculates how strong it is based on the said algorithm.
     
  9. samsmithgaia

    samsmithgaia Member

    Joined:
    Nov 16, 2011
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    im trying to give guidance to my customers on what type of password they should use i dont care about the algorithm

    its something like this from the last post im looking for

     
  10. StuartMacfarlane

    Joined:
    Jun 24, 2010
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    1
    I think what the OP is trying to say is what is the difference in terms of complexity between say 10 and 50. What would cPanel staff consider a good base number to start on (and don't say 1).

    I had this same question as I want to set a level that is good for security but also does not hinder the customers ability to set a password without having to try it several times due to failing the strength check.
     
  11. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,776
    Likes Received:
    663
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello :)

    We recommend that you set the default minimum password strength to at least 50.

    Thank you.
     
Loading...

Share This Page