[Samba] weak password checking for samba 3 ?
Ryan Novosielski
novosirj at umdnj.edu
Fri Sep 26 21:49:28 GMT 2003
I would also recommend some variety of a strong password requirement when
changing passwords, if you haven't already got one -- that way you won't
have that problem in the first place. :)
---- _ _ _ _ ___ _ _ _
|Y#| | | |\/| | \ |\ | | | Ryan Novosielski - Jr. UNIX Systems Admin
|$&| |__| | | |__/ | \| _| | novosirj at umdnj.edu - 973/972.0922 (2-0922)
\__/ Univ. of Med. and Dent. | IST/ACS - NJMS Medical Science Bldg - C630
On Fri, 26 Sep 2003, Jason Balicki wrote:
>
>
> >I've got a problem with some idiots of my users :=).
>
> Don't we all.
>
> >They always use weak passwords. Does anyone know
> >a way to find out which passwords are easy to crack?
> >I mean usual passwords like god, sex, password, $username, ....
>
> You can use John the Ripper (free) or (and I hesitate to mention
> this, because of @stake's recent horrible behavior) LC4
> (formerly L0phtcrack) which costs money. (I think l0phtcrack
> used to be free, if I'm not mistaken.)
>
> John the Ripper:
>
> http://www.openwall.com/john/
>
> LC4:
>
> http://www.atstake.com/research/lc/
>
> Why you should cease business with @stake:
>
> http://story.news.yahoo.com/news?tmpl=story&cid=1804&ncid=1804&e=3&u=/washpo
> st/20030926/tc_washpost/a2328_2003sep25
>
> There are other password cracking programs. They're just a google
> search away. Are you scared yet?
>
> --J(K)
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: http://lists.samba.org/mailman/listinfo/samba
>
More information about the samba
mailing list