OpenPasswordFilter
OpenPasswordFilter copied to clipboard
jephthai
An open source custom password filter DLL and userspace service to better protect / control Active Directory domain passwords.
I like the idea of this project. However, with a quick glance, some flaws can be identified. Using TCP on port 5999 is not the best way to pass secrets...
Hi, We are using this service on a high traffic DC. We are noticing that after a while (a few hours), although the service is still running, the password filter...
Hi, During some tests that i was doing in my lab, I discovered a possible failure point. If me as Administrator of AD force the user to change the password...
For some reason, I am unable to use passwords such as Sunshine!123 or Summer2015. I am testing these to ensure that passwords that are not on the list will work,...
As noted here, https://support.microsoft.com/en-us/help/2549833/changing-the-krbtgt-password-may-fail-when-a-custom-password-filter-is, a special exception needs to be created to ensure that the password check returns true for the krbtgt user account.
I like your project and it seems to be very usefull but there is one feature i am missing, partial matching including a percentage matching sheme. Sadly i am weak...
I am basically trying to create a password policy for my company with the only requirements being that it needs to be 15 characters and no more than 4 repeating...
Hi I have implemented the Password Filter and it looks to be working great for the supplied opfcont and opfmatch but if i add a new password to the document...
I used cdebbo's pull request to get the username into the c# bits, and added checks that the password does not contain SAMAccountName, user's given name, surname, or display name....
I fixed this in mine, but I'm beginning to suspect our forks are diverging. There's a small leak in dllmain.cpp. pfAccount in the PasswordFilter function needs deleting when you're done...