Strong vs Weak passwords

[NicT]

Hi Team,

Sorry if this is in the wrong place as I wasn't sure where to put it (you guys don't have a "features" area for comments).

My issue is that almost every password I set (I use the auto password generator) is marked "weak", however many passwords on sites don't support longer/more complex ones, and there are many times I need "plain English" type passwords even though I know they are less secure.

It would be REALLY good if you could specify what you consider a "weak" password globally.  There may also be reasons for wanting your passwords to be what enpass considers "weak".  While I'm happy to have a flag - being able to control when that flag appears would actually make this functionality far more usable.  If you could specify less than number of characters + no special characters + no numbers + no caps - dictionary words (or some combination of this) as being "weak" it would be much easier for me to determine which of my passwords were actually "weak" in all cases.

[Abhishek Dewan]

Hi @NicT

Welcome to the Enpass Community!

You can refer to this link in order to learn more about how Enpass calculates strength of a password - https://www.enpass.io/docs/security-whitepaper-enpass/miscellaneous.html#password-strength-estimation

Also, You can set Enpass to exclude some passwords from audit, Please follow these instructions https://www.enpass.io/docs/manual-desktop/customize_fields.html#exlude-from-audit

Thanks.