Change password for all virtual servers by reseller

Hi

I just discovered, that one of my "reseller" accounts used a very weak passwords for about 1000 virtual servers. Can I generate new passwords for all the virtual servers, and log it to a file?

I would also like if I could prevent weak paswords like 12345678 and others like that.

Thanks Sebastian

Status: 
Active

Comments

Howdy -- well, there's an example script in the documentation here of how to change the password for all Virtual Servers:

https://www.virtualmin.com/documentation/developer/cli_examples

I don't, at the moment, have a good way of changing passwords for Virtual Servers owned by a particular reseller, though I'm looking into that :-)

Regarding password policies -- if you go into Webmin -> System -> Users and Groups -> Module Config -> Password Restrictions, you can setup a number of password policies there, such as preventing dictionary words, setting a minimum password length, and such.

Thanks

Guess I just need to find a way to generate passwords and log them to a file after passing them to the virtual servers.

Any way I can block the use of simple passwords as 12345678 ?

Can I see a list of passwords for the "Prevent dictionary word passwords" ?

Thanks Sebastian

Guess I just need to find a way to generate passwords and log them to a file after passing them to the virtual servers.

There unfortunately isn't a way to do this within Virtualmin, but it's possible to write a script that would do that.

Can I see a list of passwords for the "Prevent dictionary word passwords" ?

Virtualmin uses ispell to determine if it's a dictionary word.

So what you could do is run the command "ispell" on the command line, and then type in some example words.

It'll say "ok" if it's a word, or offer alternatives, or say "not found", if it's not a word.

Any way I can block the use of simple passwords as 12345678 ?

It doesn't appear that ispell considers numbers to be words, so you'd need to setup a rule that prevented numbers.

What you could so is setup a regular expression in the "Perl regexp to check password against" field.

Perhaps something like this:

[^0-9]+