- update to version 1.2.2
- When matching against the reversed new password, always pass the
original non-reversed new password (possibly with a substring
removed) into is_simple(), but remove or check the correct
substring in is_based() considering that the matching is possibly
being done against the reversed password.
- New command-line options for pwqcheck: -1 and -2 for reading just
1 and just 2 lines from stdin, respectively (instead of reading 3
lines, which is the default), --multi for checking multiple
passphrases at once (until EOF).
- With randomly-generated passphrases, encode more entropy per
separator character (by increasing the number of different
separators from 8 to 16) and per word (by altering the case of
the first letter of each word), which increases the default
generated passphrase size from 42 to 47 bits.
- Substring matching has been enhanced to partially discount rather
than fully remove weak substrings, support leetspeak, and detect
some common sequences of characters (sequential digits, letters in
alphabetical order, adjacent keys on a QWERTY keyboard).
- Detect and allow passphrases with non-ASCII characters in the words.
- A number of optimizations have been made resulting in significant
speedup of passwdqc_check() on real-world passwords.