Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Reduce users' password restrictions?

Discussion in 'General Discussion' started by jspicher, Dec 13, 2011.

  1. jspicher

    jspicher Member

    Joined:
    May 19, 2011
    Messages:
    5
    Likes Received:
    0
    Trophy Points:
    51
    Hey there guys, so l'm using xml-api2 to update users' passwords and everything works great, however sometimes l get a response that the password could not be updated because it contains a dictionary word... l get that however l need to figure out a way around this, if one of our clients wants to use test123 as their cpanel password; l need to let them do it. Is there a setting somewhere in WHM that will let me scale these restrictions down a bit?

    Thanks for your help!
     
    #1 jspicher, Dec 13, 2011
  2. quietFinn

    quietFinn Well-Known Member

    Joined:
    Feb 4, 2006
    Messages:
    998
    Likes Received:
    11
    Trophy Points:
    168
    Location:
    Finland
    cPanel Access Level:
    Root Administrator
    WHM >> Security Center >> Password Strength Configuration
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 quietFinn, Dec 13, 2011
  3. jspicher

    jspicher Member

    Joined:
    May 19, 2011
    Messages:
    5
    Likes Received:
    0
    Trophy Points:
    51
    Thanks quietFinn,
    I've updated this setting, and have it set all the way to 0 and the api still responds with:
    Your password could not be changed because the new password failed with the following reason : (it is based on a dictionary word), please try again!

    When trying to set a cpanel password to test123 ... is there anything else l can do to disable this?
     
    #3 jspicher, Dec 14, 2011
  4. quietFinn

    quietFinn Well-Known Member

    Joined:
    Feb 4, 2006
    Messages:
    998
    Likes Received:
    11
    Trophy Points:
    168
    Location:
    Finland
    cPanel Access Level:
    Root Administrator
    I tested it, in WHM, created an account with password test123, and then changed the password to test12.
    Guess the limitation is in the api then...
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 quietFinn, Dec 14, 2011
  5. quietFinn

    quietFinn Well-Known Member

    Joined:
    Feb 4, 2006
    Messages:
    998
    Likes Received:
    11
    Trophy Points:
    168
    Location:
    Finland
    cPanel Access Level:
    Root Administrator
    I noticed that if I changed the password in command line, I get that error:
    BAD PASSWORD: it is based on a dictionary word
    but the password was changed anyway.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #5 quietFinn, Dec 14, 2011
  6. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,442
    Likes Received:
    1,962
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    The message is coming from the Linux "passwd" command, rather than cPanel. In specific, it stems from the pam_cracklib module. This module helps to ensure passwords are not vulnerable. You can disable this module your system, however doing so would allow passwords such as "123" to be used.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #6 cPanelMichael, Dec 15, 2011
(You must log in or sign up to post here.)
Loading...
Similar Threads - Reduce users' password
  1. PPNSteve

    SOLVED Potential reduced AutoSSL coverage

    PPNSteve, Nov 14, 2018, in forum: Security
    Replies:
    7
    Views:
    220
    cPAusaf
    Nov 17, 2018
  2. kiopeed

    SOLVED Reduce password protection

    kiopeed, Oct 27, 2018, in forum: Security
    Replies:
    3
    Views:
    113
    cPanelMichael
    Oct 29, 2018
  3. Benjamin D.

    Potential reduced AutoSSL coverage for subdomain that doesn't exist?

    Benjamin D., Sep 16, 2018, in forum: Security
    Replies:
    4
    Views:
    258
    Benjamin D.
    Sep 23, 2018
  4. Jenny Inkpot

    How to reduce files from my Home Directory?

    Jenny Inkpot, Jun 28, 2018, in forum: General Discussion
    Replies:
    1
    Views:
    137
    Infopro
    Jun 28, 2018
  5. lorio

    GDPR - logrotation - to reduce amount of IP data

    lorio, May 22, 2018, in forum: General Discussion
    Replies:
    3
    Views:
    363
    cPanelLauren
    May 25, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice