Currently with default settings, generated password is 12 characters long, in current character set it gives entropy between 64bits and 80bits.
This entropy should be at least 128bits to feel safe nowadays, so default settings of password length should be 22. (https://en.wikipedia.org/wiki/Password_strength)
Also we should keep 12 characters long password for temporary user and host passwords, to not force users rewrite super long passwords.
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1363756
Metadata Update from @mbasti:
- Issue assigned to mbasti
- Issue set to the milestone: FreeIPA 4.4.1
to comment on this ticket.