[2682] in bugtraq
Re: Not so much a bug as a warning of new brute force attack
daemon@ATHENA.MIT.EDU (Russell Street)
Tue Jun 4 18:59:22 1996
Date: Tue, 4 Jun 1996 20:17:21 +1200
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: Russell Street <r.street@auckland.ac.nz>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: <Pine.SUN.3.90.960604161655.6463F-100000@papaioea.manawatu.gen.nz> from "Alan Brown" at Jun 4,
96 04:21:17 pm
> What about a fascist passwd program which refers to a dictionary and
> rejects "easy" passwords? Does such an animal exist?
Alec Mufett's cracklib (2.5) is what you want.
archie -s cracklib
will point you at it.
Combine with (say) John F. Haugh II's login replacement (archie for
shadow...) or recompile your favourite passwd program...
Russell
