Password strength indicator
https://mattermost.atlassian.net/browse/PLT-3378
Proposing we add a password strength indicator when users set passwords.
Asking community to comment on how to assess strength of passwords and share recommendations on libraries we can use?
6
votes
Adminmattermost.org
(Moderator, Mattermost)
shared this idea
-
D. Planque
commented
This might be usefull. Please note that password strength based on #of characters is not always stronger. Shorter passphrases are, for example, stronger than complex random strings due to the way the human brain works.
Additionally, please note that NIST is updating their password rules.
Below a tool from OWASP on the subject:
https://github.com/nowsecure/owasp-password-strength-test/blob/master/README.md