I've configured PAM to restrict password creation to 8 or more characters. It would therefore be a good idea to add an option to throw out passwords that are less than a given number of characters since it's just a waste of time to try them. For example, let's say we had: Minlength = 8 If we were considering the word "fred" from the wordlist, we'd ignore "fred", but would accept the mangled "fredfred". Thanks! p.s. I suppose for symmetry, we could have a Maxlength option too.