I am trying to change my admin password via yunohost tools adminpw
this is a test instance running on virtualbox with no data, so I would like an easy access to it (also, it does not have certificates sorted out, so my browser won’t save the password for it). When I try to put intentionally easy password like “admin”, I get this error:
“Error: This password is among the most used passwords in the world. Please choose something more unique.”
Is there a way to disable these checks? (I just had to boot into bash to reset the root password as I forgot my admin passward, yay for security)
I guess I could but when i do not use my test machine for months again, it would not occur to me to try it I think.
A misfeature of password prompts is when they do not specify the minimum requirements - if the requirements were displayed when incorrect password is entered, that would help a lot too.
I think this setting can disable these checks (not tested):
yunohost settings set security.password.admin_strength -v -1
If it don’t work, test with security.password.admin.strength , in the past it was a point instead of a underscore.
You can disable the check for users too (not recommended, no more than for admin) with security.password.user_strength.
-1: disabled completely the check
0 : alert if listed in common password
1 : 8 letters minimum, alert if listed in common password
2 : 8 letters minimum, digit, lower and upper, alert if listed in common password
3: 8-letters minimum, digit, lower, upper, and other characters, alert if listed in common password
4: 12-letters minimum, digit, lower, upper, and other characters, alert if listed in common password
yunohost settings list | grep security.password
security.password.admin_strength:
security.password.passwordless_sudo:
security.password.user_strength:
I test it, there isn’t a typo. Your version must be older than mine.
The two settings are accepted with underscore (new setting) and point (old setting) with Yunohost 11.1.13