Release Notes: Detection of common character sequences has been improved (as tested on RockYou top 100k and top 1M). Generation of random passphrases with non-default settings has been improved: case toggling has been made optional, possible use of trailing single characters has been added, words are now separated with dashes when different separator characters are not in use, and the range of possible bit sizes of generated passphrases has been expanded. The code has been made more robust. Mac OS X support has been added. pwqcheck.php, a PHP wrapper function around the pwqcheck program, has been added.
Release Notes: Solaris-focused Makefile and documentation updates were done.
Release Notes: A password strength check has been adjusted to no longer subject certain passwords that start with a digit and/or end with a capital letter to an unintentionally stricter policy.
Release Notes: pwqcheck is now usable by OpenBSD and is able to check multiple passphrases at once. The random passphrases will now encode more entropy per separator and per word, increasing their default size to 47 bits. Substring matching will now partially discount rather than fully remove weak substrings, support leetspeak, and detect sequential digits, letters, and adjacent keys. The strength checking code will now detect and allow passphrases with non-ASCII (8-bit) characters in the words. The code has been made significantly faster. RPM packages can now be built out of the distribution tarballs.
Release Notes: Minor cleanups were done for the code and manual pages markup, such as for proper formatting on OpenBSD.
Release Notes: An "official" and documented way to build and install all components but the PAM module on systems without PAM has been introduced. The "personal login information" check has been enhanced to consider the user's home directory path and name (in addition to the username and full name). The code has been made more portable. The license has been relaxed.
Release Notes: This release restored portability to non-Linux platforms and improved the "protocol" used by the pwqcheck and pwqgen programs.
Release Notes: The pam_passwdqc package has been renamed to passwdqc along with the introduction of libpasswdqc (a password/passphrase strength checking library), pwqcheck (a standalone password/passphrase strength checking program), and pwqgen (a standalone random passphrase generator program), in addition to the PAM module, which is now built upon libpasswdqc. The config=FILE option has been added to allow for specifying the password/passphrase policy in a configuration file rather than on the command-line. The documentation has been revised, including the introduction of man pages for the new components.
Release Notes: The separator characters (used for randomly generated "passphrases") have been replaced with some of those defined by RFC 3986 as being safe within the "userinfo" part of URLs without encoding. The default minimum length for passphrases has been reduced from 12 to 11 characters. Corrections to the documentation have been made.
Release Notes: A potential memory leak in PAM conversation wrapper function has been fixed. On Linux, the set of symbols exported by the PAM module has been restricted. The Makefile and RPM spec file have been updated to support builds on x86-64.