How do we prevent Weak C-Panel Passwords in Blesta ?

turner2f · September 30, 2020

Just curious to know, does Blesta prevent weak passwords from being created via the "Password Change" function within the Client's "Manage" area for C-Panel ?

( Services - - > Manage - - > Actions - - > Change Password )

IF it does allow weak passwords, will this be addressed in a future update in Blesta ?

Or . . .

Would we be able to DE-activate the client's ability to change their C-Panel password within Blesta ?

------------

Thanks for a fantastic product.

Look forward to your reply.

Jono · October 12, 2020

This is something you can test. Try changing to a weak password and see if it works. That being said the module doesn't put any restrictions on password strength though the cPanel API might.

turner2f · October 12, 2020

@Jono

According to the post at . . .

https://www.blesta.com/forums/index.php?/topic/14239-how-to-hide-remove-password-change-field-in-cpanel/#comment-67798

. . . it does allow weak passwords.

-------------------

1) - Will this be updated in a future version ?

...

Jono · October 13, 2020

If cPanel allows weak passwords then I don't think Blesta should be stepping in and creating arbitrary restrictions. The client could just as easily log in to cpanel and change their password to a weak one. One thing we could be though is to make the password generator on the page which will let users automatically generate strong passwords. https://dev.blesta.com/browse/CORE-3946

turner2f · October 13, 2020

@Jono

Thanks for adding this for an update .

Sign In

How do we prevent Weak C-Panel Passwords in Blesta ?

Question

turner2f

4 answers to this question

Recommended Posts

Jono

turner2f

Jono

turner2f

Please sign in to comment

Browse

Activity