Dependency Graph
View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0005222 | SOGo | Web Preferences | public | 2020-11-21 13:18 | 2022-06-06 20:51 |
Reporter | dragoangel | Assigned To | |||
Priority | normal | Severity | major | Reproducibility | N/A |
Status | new | Resolution | open | ||
Platform | [Server] Linux | OS | RHEL/CentOS | OS Version | 7 |
Product Version | 5.0.1 | ||||
Summary | 0005222: Password policy settings for SQL backend | ||||
Description | If people use SQL backend for user authorization and allow SOGo Change password future SOGo will allow people to set any password user enter in SOGo even them obviously unsafe. With LDAP backend this can be handled by LDAP policy, but not with SQL one. This was already mentioned in https://sogo.nu/bugs/view.php?id=1993 far ago, but maybe now this can be fixed via sogo.conf for sql backend or even for all backend with providing helper note about applied password policy on SOGo Preferences. | ||||
Tags | No tags attached. | ||||
related to | 0001993 | new | password policy |
Date Modified | Username | Field | Change |
---|---|---|---|
2020-11-21 13:18 | dragoangel | New Issue | |
2022-06-06 20:50 | francis | Relationship added | related to 0001993 |
2022-06-06 20:51 | francis | Note Added: 0016091 |