(In reply to Gino Harlos from comment #3) > Created attachment 10905 [details] > Patch suggestion, including default password lenght > > I think it's time to increase the default password length to 32 or even 64. > We have arrived in 2022 and as quickly as a new container comes, it also > goes, or is simply forgotten. > I hope that I found all digits of the default password length. > > Could also be something for the UCS security guide? ( > https://forge.univention.org/bugzilla/show_bug.cgi?id=37877 ) But also consider this note: (In reply to Philipp Hahn from comment #2) > Windows uses 120 UTF-16 character = 240 bytes, so 256 is okay from that > perspective. > > Until Bug #31281 (UCS-3.2) it was limited to 8 characters, now it is: > base/univention-lib/shell/base.sh: > > create_machine_password () { > > local length compl > > length="$(/usr/sbin/univention-config-registry get machine/password/length)" > > compl="$(/usr/sbin/univention-config-registry get machine/password/complexity)" > > pwgen -1 -"${compl:-scn}" "${length:-20}" | tr -d '\n' > > } > > `-s` = `--secure` → for machine usage > `-c` = `--capitalize` → at least on capital letter > `-n` = `--numerals` → also digits > > (2*26+10)^20 = 704.423.425.546.998.022.968.330.264.616.370.176 =~ 7e35 > is still enough for y2021. If the differences between 2021 and 2022 are this drastically, we should apply above patch :-) +++ This bug was initially created as a clone of Bug #52575 +++