Hi Anders,
> I think it could be enough with a generic one: "cracklib refused your
> password" and then quote the message that it returned in a [[VAR.msg]] ?
>
> Or perhaps just lookup what it returns with i18n, and default to English.
> i.e. use the cracklib result as the "msgid", in the base-user locale file.
Both are good ideas. I'll try to work that in.
> OK, so that's all good then. (Was meaning for it to be patched into base)
> That was the only reservation. Well that, and my *test* pw is < 8 chars :-)
When it's patched into base, you'll also need the cracklib PHP module. I used
the one available through PHP's PEAR functionality. To compile it from source
one just needs to do the following steps:
pear download crack (will download crack-0.4.tgz to the directory you're in)
tar zxvf crack-0.4.tgz
cd crack-0.4
phpize
./configure; make ; make install
echo "extension=crack.so" >> /etc/php.ini
/etc/init.d/admserv reload
It should also be possible to do it all in one go with "pear install crack"
opposed to "pear download crack" and then doing a manual
unpack/compile/install. However, in my experience the automated install of
PEAR components often errors out during compilation, so it's best do do it
step by step.
> But at the very least the password != username should be good to go
> as-is...
Yeah, that ought to be in as it will save a lot of grief.
--
With best regards,
Michael Stauber