Chapter 7. Dashboard in OpenStack Security Guide - Add best practice around pw managers
Bug #1441229 reported by
N Dillon
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-manuals |
Fix Released
|
Medium
|
Patrick Amor |
Bug Description
As password complexity requirements rise, and as re-use is discouraged in best practice, password managers are a growing part of daily use. The Dashboard section is a good place to have a discussion of the pros and cons of password management, plus recommendations on doing so securely if they are allowed (such as disabling browser managers and using desktop).
-------
Built: 2015-04-06T06:53:56 00:00
git SHA: 2f906469bc38a20
URL: http://
source File: file:/home/
xml:id: dashboard
Changed in openstack-manuals: | |
status: | New → Confirmed |
importance: | Undecided → Medium |
Changed in openstack-manuals: | |
assignee: | nobody → Danny.Ho (dannyh) |
Changed in openstack-manuals: | |
assignee: | Danny.Ho (dannyh) → nobody |
Changed in openstack-manuals: | |
assignee: | nobody → Matt Valdes (matthew-valdes) |
To post a comment you must log in.
Hello Andreas
Password characters should be a combination of alphanumeric characters. Alphanumeric characters consist of letters, numbers, punctuation marks, mathematical and other conventional symbols. for change password functionality, if possible, keep a history of old passwords hashes used. should not store the actual passwords to protect against brute forcing if the database file is compromised. In this way, the user can not change to a password that was used a couple of months back.