Passwords should be checked against well-maintained dictionaries. I'm not sure the best dictionary to use for this constraint. Ideally we can just check against an uploaded/retrieved word list that an admin can choose to be exhaustive or specific to a particular site.

Here are a few options available at first glance -

Comments

mototribe’s picture

mototribe commented

that would be a great feature

aohrvetpv’s picture

aohrvetpv commented
Issue summary: View changes
Status: Active » Fixed

A blacklist constraint was implemented in #2134997: Create password blacklist which I believe accomplishes this. It does not include any words or word lists (dictionaries) by default, but they can be copy/pasted into the text area.

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.