topic Re: Web Password Security Authentication in Operating System - Linux

Web Password Security Authentication

Michael Williams_6 — Tue, 08 Mar 2005 11:04:47 GMT

Please note this is a slightly different question to the one I asked about my NIS domain!

We have an FTP server which is soon to have a web-based wrapper to ease user management for our clients. With this in mind, I'd like for them to be able to create their own users at will via this web interface.

This will be done in Perl, does anyone know of a tool that will verify the security of a password to ensure we don't have any poor passwords??

Thanks for your help!

Re: Web Password Security Authentication

Steven E. Protter — Tue, 08 Mar 2005 11:41:58 GMT

If its using the OS, and rules are in place the perl script should get and return answers from the OS.

Linux ships with the crack utility to guage password strength. If you choose a dicationary word, you get a response back. This response will be received from a properly written perl script and can be relayed to the user.

SEP

Re: Web Password Security Authentication

Michael Williams_6 — Tue, 08 Mar 2005 11:58:40 GMT

Would you look at that, I'd never even heard of cracklib!

Turns out there's a perl module called cracklib that is compiled using this as a source, and I've got all that's needed on the server already!!

That has to be the quickest answer I've ever had, an easy 10 points to you sir!