Debian Bug report logs - #593513
Allow user to set preferred password

Package: libpam-runtime; Maintainer for libpam-runtime is Steve Langasek <vorlon@debian.org>; Source for libpam-runtime is src:pam (PTS, buildd, popcon).

Reported by: MichealH <michealh@michealh.co.cc>

Date: Wed, 18 Aug 2010 21:00:01 UTC

Severity: normal

Done: Steve Langasek <vorlon@debian.org>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, Debian Adduser Developers <adduser-devel@lists.alioth.debian.org>:
Bug#593513; Package adduser. (Wed, 18 Aug 2010 21:00:04 GMT) (full text, mbox, link).

Acknowledgement sent to MichealH <michealh@michealh.co.cc>:
New Bug report received and forwarded. Copy sent to Debian Adduser Developers <adduser-devel@lists.alioth.debian.org>. (Wed, 18 Aug 2010 21:00:04 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

[Message part 1 (text/plain, inline)]

Package: adduser

When installing ubuntu, I could, if I choose, to use a password that is
considered insecure, e.g., 123456, though I am warned, I am allowed. After
installing, if I try to change my password to something like 123456 I am
told the password is too simple, and I can't change it. It needs to be one
or the other, personally I don't think I should be told I can't change my
password to 123456, that isn't very free. Tell me I am an idiot, but don't
tell me I can't.

I am using Ubuntu with the latest Kernel.

Thanks.

[Message part 2 (text/html, inline)]

Information forwarded to debian-bugs-dist@lists.debian.org, Debian Adduser Developers <adduser-devel@lists.alioth.debian.org>:
Bug#593513; Package adduser. (Wed, 18 Aug 2010 21:15:11 GMT) (full text, mbox, link).

Acknowledgement sent to MichealH <michealh@michealh.co.cc>:
Extra info received and forwarded to list. Copy sent to Debian Adduser Developers <adduser-devel@lists.alioth.debian.org>. (Wed, 18 Aug 2010 21:15:11 GMT) (full text, mbox, link).

Message #10 received at 593513@bugs.debian.org (full text, mbox, reply):

[Message part 1 (text/plain, inline)]

Sorry but the package actually affects pam

[Message part 2 (text/html, inline)]

Bug reassigned from package 'adduser' to 'libpam-runtime'. Request was from Micah Gersten <micahg@ubuntu.com> to control@bugs.debian.org. (Wed, 18 Aug 2010 21:27:10 GMT) (full text, mbox, link).

Reply sent to Steve Langasek <vorlon@debian.org>:
You have taken responsibility. (Wed, 18 Aug 2010 21:45:07 GMT) (full text, mbox, link).

Notification sent to MichealH <michealh@michealh.co.cc>:
Bug acknowledged by developer. (Wed, 18 Aug 2010 21:45:07 GMT) (full text, mbox, link).

Message #17 received at 593513-done@bugs.debian.org (full text, mbox, reply):

[Message part 1 (text/plain, inline)]

If you set your password as root, as is done at install time, you can set as
weak of a password as you want.  If you set it as a normal user, you are
constrained by the password strength checking requirements that are in
place.  This is not a bug, this is the intended behavior.

You can disable these strength checks by removing the 'obscure' option to
pam_unix in /etc/pam.d/common-password.

-- 
Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
Ubuntu Developer                                    http://www.debian.org/
slangasek@ubuntu.com                                     vorlon@debian.org

[signature.asc (application/pgp-signature, inline)]

Message #18 received at 593513-done@bugs.debian.org (full text, mbox, reply):

[Message part 1 (text/plain, inline)]

This one time, at band camp, MichealH said:
> Package: adduser
> 
> When installing ubuntu, I could, if I choose, to use a password that is
> considered insecure, e.g., 123456, though I am warned, I am allowed. After
> installing, if I try to change my password to something like 123456 I am
> told the password is too simple, and I can't change it. It needs to be one
> or the other, personally I don't think I should be told I can't change my
> password to 123456, that isn't very free. Tell me I am an idiot, but don't
> tell me I can't.
> 
> I am using Ubuntu with the latest Kernel.

While your problem sounds very much like a pam problem and not an adduser
one, I can't reassign a bug from the debian bug tracking system to the
Ubuntu one.  I am closing this one, please open a new report in Ubuntu's
bug tracker against pam.

Cheers,
-- 
 -----------------------------------------------------------------
|   ,''`.                                            Stephen Gran |
|  : :' :                                        sgran@debian.org |
|  `. `'                        Debian user, admin, and developer |
|    `-                                     http://www.debian.org |
 -----------------------------------------------------------------

[signature.asc (application/pgp-signature, inline)]

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Thu, 16 Sep 2010 07:31:18 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Sun Jan 7 07:03:21 2018; Machine Name: beach

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Debian Bug report logs - #593513 Allow user to set preferred password

Debian Bug report logs - #593513
Allow user to set preferred password