diff --git a/apps/system/views.py b/apps/system/views.py
index 44584baa..65a7585a 100755
--- a/apps/system/views.py
+++ b/apps/system/views.py
@@ -457,7 +457,7 @@ class UserViewSet(CustomModelViewSet):
 
         创建用户
         """
-        password = make_password('0000')
+        password = make_password('abc!0000')
         serializer = self.get_serializer(data=request.data)
         serializer.is_valid(raise_exception=True)
         instance = serializer.save(password=password, belong_dept=None)
@@ -491,6 +491,8 @@ class UserViewSet(CustomModelViewSet):
             new_password1 = request.data['new_password1']
             new_password2 = request.data['new_password2']
             if new_password1 == new_password2:
+                if new_password1 == old_password:
+                    raise ParseError('新密码不得与旧密码相同')
                 user.set_password(new_password2)
                 user.save()
                 return Response()
@@ -503,7 +505,7 @@ class UserViewSet(CustomModelViewSet):
     def reset_password(self, request, pk=None):
         user = self.get_object()
         if request.user.is_superuser:
-            user.set_password('0000')
+            user.set_password('abc!0000')
             user.save()
         else:
             raise PermissionDenied()