Increase the password length from 8 characters to 15 characters or more [CORE1898] #2330
Assignees
Comments
Modified by: @AlexPeshkoffassignee: Alexander Peshkov [ alexpeshkoff ] |
|
Commented by: @AlexPeshkoff Except longer default passwords in FB3 are also secure: they are not passed over the wire in any way |
Modified by: @AlexPeshkoffstatus: Open [ 1 ] => Resolved [ 5 ] resolution: Fixed [ 1 ] Fix Version: 3.0 Alpha 1 [ 10331 ] |
Modified by: @pavel-zotovQA Status: No test |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
firebird-issue-importer commentedMay 13, 2008
Submitted by: Bruno Marx (bmx)
Replaces CORE3342
Is duplicated by CORE3933
Is related to QA630
Votes: 5
It would be very desirable to increase the password scheme to support more than 8 characters. Our customer requires us to support a certain number of the Database STIG requirements developed by DISA for the US DoD, including DG0079:
"(DG0079: CAT II) The DBA will ensure database password complexity standards meet current minimum requirements for length (9 characters or more for database application user accounts and 15 characters or more for privileged database accounts) and composition (at least two uppercase characters, two lowercase characters, two special characters, two digits ) where supported by the DBMS".
From DG0079, the SYSDBA password should be at least 15 characters, and other regular user/application passwords at least 9 characters.
Using Firebird 2.1 on Windows platforms, we can always use Windows Authentication to workaround that limitation, although the SYSDBA password length is still an issue.
Thanks.
Commits: 7fb8ebd
The text was updated successfully, but these errors were encountered: