passphrase quality

[Tim McGarry]

I'm having difficulty educating the users on the systems that I administer
to choose a sensible passphrase, either they choose a really short one, or
they go to the other extreme and chooose one thats so complex they cant
remember it.

I think some versions of PGP comment on passphrase quality, perhaps this
would be worth having in OpenSSH, maybe giving the user the oportunity to
try again if there phrase isn't good enough

Tim McGarry