Setting weak passwords should be forbidden

[jibel]

Lunar 20230709

It is possible to set very weak passwords on the user setup page, like a single letter. Ubuntu shouldn't contribute to making the ecosystem weaker than it already is and enforce minimal password strength. Libraries such as libpwquality or similar tools are useful to create stronger passwords.

[seb128]

The dialog currently provides feedback on the password strength but don't enforce it by preventing installing using a weak password. If we decide to be more restrictive we need design input on the minimal level to enforce (is a medium password like 'ImTryingUbuntu' ok or not?), knowing it's a balance to encourage best practices without creating high users frustration

[dylanmtaylor]

I disagree with this. Perhaps an approach like Fedora where it says you have a weak password and makes you click twice to continue would be a good solution.