This is the same algorithm used for the “password quality” in KeePassXC’s password generator, with identical assessment as stated above (< 40 is poor, < 65 is weak, etc.) Password Re-use The password score starts with the password’s entropy (in bits), computed using the zxcvbn algorithm. There’s no limit for how low the score can get (scores less than zero are possible). There are no conditions under which the score would go up. The general idea of password score is to begin with a “strengh index” based on the complexity of the password, and then to reduce it in case of certain issues. if the entry’s password is a four-digit ATM PIN). Note that it’s possible to exclude entries from Health Check by right-clicking them and selecting “Exclude from reports” (e. Passwords appear in increasing order of their score so the worst passwords appear at the beginning of the list (but you may sort the list manually by clicking the column titles). “Good” and “excellent” passwords aren’t reported in order to prevent clutter. Passwords that are “bad”, “poor”, or “weak” are reported in Health Check, marked red, orange and yellow, respectively. Based on the score, the password is assessed as follows: Health Check analyzes all passwords of your database and computes a “score” for each (details below). It looks like this:īy the way, if you’ve been using the “Statistics” panel in KeePassXC 2.5.x, please note that it’s been moved from the “Database Settings” dialog to the “Reports” pane, just below Health Check. You invoke Health Check with “Database → Database Reports”. This article explains how the password assessment works in detail. KeePassXC 2.6.0 comes with a new and long-awaited feature: The Health Check report lists weak, multiply used, and expired passwords with a severity (red, orange, or yellow) and a score (the lower the score, the worse the password).
0 kommentar(er)
