View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0005222||SOGo||Web Preferences||public||2020-11-21 08:18||2020-11-21 08:18|
|Platform||[Server] Linux||OS||RHEL/CentOS||OS Version||7|
|Summary||0005222: Password policy settings for SQL backend|
If people use SQL backend for user authorization and allow SOGo Change password future SOGo will allow people to set any password user enter in SOGo even them obviously unsafe. With LDAP backend this can be handled by LDAP policy, but not with SQL one.
This was already mentioned in https://sogo.nu/bugs/view.php?id=1993 far ago, but maybe now this can be fixed via sogo.conf for sql backend or even for all backend with providing helper note about applied password policy on SOGo Preferences.
|Tags||No tags attached.|