As part of LB’s ongoing campaign against abuse and to ensure the security of our users’ email services, LB are planning to impose a stricter password policy for email accounts hosted with us. As a result of this change, the system will no longer allow passwords of the type that could be deemed vulnerable to sabotage attempts. Email account passwords must fulfill the following criteria henceforth –
1. The password must contain at least 8 characters (and can be up to 32 characters long).
2. The password can not contain the email prefix in its exact form. For instance, if your email address were email@example.com, then your password can not contain the word john.
3. The password must contain at least one alphabet (a-z in upper or lowercase), and at least one numeral (0-9).
To make communication with the end user easier for you, LB will shortly send a white-labeled advisory to all email users whose passwords do not satisfy these criteria, alerting them to update their password on or before March 20th, 2011. This email will be sent from firstname.lastname@example.org, For example if the domain name is xyz.com then the mail will be sent from email@example.com and will include the new password criteria. It will not include any links.
If the users do not change their password then the password will be reset and a new password will be sent to the alternate email address of the end user.
LB will be displaying appropriate banners in the control panel and webmail of the end user as well.
We recommend that you contact your customers and inform them about this policy change. If you have any questions about this process, please contact our support team and we’d be happy to answer your queries.