Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  community  lists  wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Order Openwall Wordlists CD (20+ languages) with delivery worldwide or download
[<prev] [next>] [<thread-prev] [month] [year] [list] 
Date: Fri, 31 Aug 2007 19:40:58 -0600
From: Tremaine Lea <tremaine@...il.com>
To: john-users@...ts.openwall.com
Subject: Re: dynamic password list

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 31-Aug-07, at 6:25 PM, Don Colton wrote:

> Aloha,
>
> I administer a linux server that has 100+ student accounts.  I am
> using john to identify weak passwords, whereupon I notify the student
> and eventually suspend uncorrected accounts.  This helps me teach the
> students how to pick a good password, and helps me enforce it.
>


[snipped]

Hi Don,

Aside from your John question, you may want to look at http:// 
www.puschitz.com/SecuringLinux.shtml#EnforcingStrongerPasswords

It may help cut down on the number of successfully cracked passwords  
you get if users can be restricted from choosing simplistic passwords.

Cheers,

- ---
Tremaine Lea
Network Security Consultant
Intrepid ACL
"Paranoia for hire"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)

iQEcBAEBAgAGBQJG2MLcAAoJEKGa22zRy9WCdfQH/jIueW1Hclcw97/n9P4qfDJB
gXJIfI3XzhvbppP9A9wwmjcmnpSowGzgICIdtdQYqOBPIqSEVQFupzpkEaPIgSuX
0VRItSlGd+jP3KOoox2FOdDHSHjE7wJDAtmSlLQnt0RsKgzQKFx/jcOtUpFLb9p6
+4RmGLFShuL1OEMhf5zQfZGwtIGa6Uw8KVk3/xCxLwlgl9JFJsu5SBiAsOzCPOTH
+A9NVucY8B8DWJD1GWSRK+wHfCz2Uc5WvRQZ1i3DQVoLyrJCgKXx3qYRAr/8QzxO
8SF3sQNjaF2KYG0oT0xqPdzamgTIKf+mLqg93o+WJJBkYWsRAiz1RnMRVwXi8Hs=
=/zDG
-----END PGP SIGNATURE-----

-- 
To unsubscribe, e-mail john-users-unsubscribe@...ts.openwall.com and reply
to the automated confirmation request that will be sent to you.

Hosted by DataForce ISP - Powered by Openwall GNU/*/Linux