[Samba] weak password checking for samba 3 ?

Ryan Novosielski novosirj at umdnj.edu
Fri Sep 26 21:49:28 GMT 2003


I would also recommend some variety of a strong password requirement when
changing passwords, if you haven't already got one -- that way you won't
have that problem in the first place. :)

---- _  _ _  _ ___  _  _  _
|Y#| |  | |\/| |  \ |\ |  |  | Ryan Novosielski - Jr. UNIX Systems Admin
|$&| |__| |  | |__/ | \| _|  | novosirj at umdnj.edu - 973/972.0922 (2-0922)
\__/ Univ. of Med. and Dent. | IST/ACS - NJMS Medical Science Bldg - C630

On Fri, 26 Sep 2003, Jason Balicki wrote:

>
>
> >I've got a problem with some idiots of my users :=).
>
> Don't we all.
>
> >They always use weak passwords. Does anyone know
> >a way to find out which passwords are easy to crack?
> >I mean usual passwords like god, sex, password, $username, ....
>
> You can use John the Ripper (free) or (and I hesitate to mention
> this, because of @stake's recent horrible behavior) LC4
> (formerly L0phtcrack) which costs money.  (I think l0phtcrack
> used to be free, if I'm not mistaken.)
>
> John the Ripper:
>
> http://www.openwall.com/john/
>
> LC4:
>
> http://www.atstake.com/research/lc/
>
> Why you should cease business with @stake:
>
> http://story.news.yahoo.com/news?tmpl=story&cid=1804&ncid=1804&e=3&u=/washpo
> st/20030926/tc_washpost/a2328_2003sep25
>
> There are other password cracking programs.  They're just a google
> search away.  Are you scared yet?
>
> --J(K)
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  http://lists.samba.org/mailman/listinfo/samba
>



More information about the samba mailing list