Password policies

Jump to navigation Jump to search

This is a list of the effective password policies for the user groups defined in this wiki.

GroupPolicies
Account creators
(list of members)
  • Password must be at least ໘ characters long (MinimalPasswordLength)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
Autoconfirmed users
  • Password must be at least ໘ characters long (MinimalPasswordLength)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
Bots
(list of members)
  • Password must be at least ໑໐ characters long (MinimalPasswordLength)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
  • Password must be at least ໑ character long to be able to login (MinimumPasswordLengthToLogin)
Bureaucrats
(list of members)
  • Password must be at least ໑໐ characters long (MinimalPasswordLength) (suggest change on login, must change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
  • Password must be at least ໑ character long to be able to login (MinimumPasswordLengthToLogin)
Check users
(list of members)
  • Password must be at least ໑໐ characters long (MinimalPasswordLength) (suggest change on login, must change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
  • Password must be at least ໑ character long to be able to login (MinimumPasswordLengthToLogin)
Confirmed users
(list of members)
  • Password must be at least ໘ characters long (MinimalPasswordLength)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
Importers
(list of members)
  • Password must be at least ໑໐ characters long (MinimalPasswordLength) (suggest change on login, must change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
  • Password must be at least ໑ character long to be able to login (MinimumPasswordLengthToLogin)
Interface administrators
(list of members)
  • Password must be at least ໑໐ characters long (MinimalPasswordLength) (suggest change on login, must change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
  • Password must be at least ໑ character long to be able to login (MinimumPasswordLengthToLogin)
IP block exemptions
(list of members)
  • Password must be at least ໘ characters long (MinimalPasswordLength)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
Oversighters
(list of members)
  • Password must be at least ໑໐ characters long (MinimalPasswordLength) (suggest change on login, must change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
  • Password must be at least ໑ character long to be able to login (MinimumPasswordLengthToLogin)
Stewards
(list of members)
  • Password must be at least ໘ characters long (MinimalPasswordLength)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
Administrators
(list of members)
  • Password must be at least ໑໐ characters long (MinimalPasswordLength) (suggest change on login, must change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
  • Password must be at least ໑ character long to be able to login (MinimumPasswordLengthToLogin)
Transwiki importers
(list of members)
  • Password must be at least ໑໐ characters long (MinimalPasswordLength) (suggest change on login, must change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)
  • Password must be at least ໑ character long to be able to login (MinimumPasswordLengthToLogin)
Users
(list of members)
  • Password must be at least ໘ characters long (MinimalPasswordLength)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than ໔,໐໙໖ characters long (MaximalPasswordLength) (suggest change on login)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist) (suggest change on login)
  • Password policy for mitigation of known attacks where disclosure of details would impede the mitigation (BlockAttacker)