Password policies

From DevOps Notebook

This is a list of the effective password policies for the user groups defined in this wiki.

GroupPolicies
Autoconfirmed users
  • Password must be at least 1 character long (MinimalPasswordLength) (suggest change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than 4,096 characters long (MaximalPasswordLength) (suggest change on login)
Bots
(list of members)
  • Password must be at least 10 characters long (MinimalPasswordLength) (suggest change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than 4,096 characters long (MaximalPasswordLength) (suggest change on login)
  • Password must be at least 1 character long to be able to login (MinimumPasswordLengthToLogin)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist)
Bureaucrats
(list of members)
  • Password must be at least 10 characters long (MinimalPasswordLength) (suggest change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than 4,096 characters long (MaximalPasswordLength) (suggest change on login)
  • Password must be at least 1 character long to be able to login (MinimumPasswordLengthToLogin)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist)
Interface administrators
(list of members)
  • Password must be at least 10 characters long (MinimalPasswordLength) (suggest change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than 4,096 characters long (MaximalPasswordLength) (suggest change on login)
  • Password must be at least 1 character long to be able to login (MinimumPasswordLengthToLogin)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist)
Administrators
(list of members)
  • Password must be at least 10 characters long (MinimalPasswordLength) (suggest change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than 4,096 characters long (MaximalPasswordLength) (suggest change on login)
  • Password must be at least 1 character long to be able to login (MinimumPasswordLengthToLogin)
  • Password cannot be in the list of 100,000 most commonly used passwords. (PasswordNotInLargeBlacklist)
Users
(list of members)
  • Password must be at least 1 character long (MinimalPasswordLength) (suggest change on login)
  • Password cannot be the same as username (PasswordCannotMatchUsername) (suggest change on login)
  • Password cannot match specifically blacklisted passwords (PasswordCannotMatchBlacklist) (suggest change on login)
  • Password must be less than 4,096 characters long (MaximalPasswordLength) (suggest change on login)