Re: test trivial passwd

Francois LAURENT · ‎05-26-2005

Hi all,

I want to test users's passwd to detect trivial passwds on trusted system (11.11).

I'm able to find if users have passwd found in a trivial passwd dictionnary (use of crypt function).

However, i don't see how can i test : passwd=logname

I'm able to compare encrypt passwd and a "static defined word list", but i don't know how can i compare to a "dynamic strings"

I don't want to use johntheripper or others crackerjack.

Do you have an idea to compare to a "dynamic strings" ?

Thanks for your help

Francois

Darren Prior · ‎05-26-2005

Hi Francois,

From the passwd(1) man page:

A password must differ from the user's login name and any reverse or circular shift of that login name. For comparison purposes, an uppercase letter and its corresponding lowercase equivalent are treated as identical.

In other words the passwd command won't let you set passwd=logname so you won't need to test for it. ;-)

regards,

Darren.

Calm down. It's only ones and zeros...

Francois LAURENT · ‎05-27-2005

Hi Darren,

Effectively, you're totaly right, i've passed trought this.

moreover my mind is not clear today, there is no difference in my script between words in dictionnary and "dynamic strings".

Thanks a lot for your help, and sorry for the silly question !

Francois

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: test trivial passwd

test trivial passwd

Re: test trivial passwd

Re: test trivial passwd