How to find length of the user accounts password in a database can you help me out
Passwords are hashed therefore, on the extent of my knowledge there is no legal way to find out the length of a particular password.
If the idea is to enforce a minimun lenght, I would suggest to create a function enforcing password leght and other characteristics you may want to enforce. Such function has to be declared on profile as PASSWORD_VERIFY_FUNCTION
Once you have the function in place, force all accounts to reset password on next login.
Hope this helps.
Pablo (Paul) Berzukov
Author of Understanding Database Administration
available at amazon and other bookstores.
Disclaimer: Advice is provided to the best of my knowledge but no implicit or explicit warranties are provided. Since the advisor explicitly encourages testing any and all suggestions on a test non-production environment advisor should not held liable or responsible for any actions taken based on the given advice.
So in a sense all hashed passwords have the same length in a database. But as Paul said a password function is the best way to go. You can also set a password expiration of 3 months, which will make people change their passwords, but not necessarily the next time they log in. You should include password complexity as well and password reuse restrictions.
this space intentionally left blank
Click Here to Expand Forum to Full Width