Getting StartedPasswords have received increasing attention as a source of vulnerability in individual machines and entire networks. Security experts from industry, government, and academia agree that weak passwords represent one of the ten most critical internet security threats.* LC4 offers an easy-to-use and adaptable way to identify and assess password vulnerability. LC4 uses a variety of sources and methods to retrieve passwords from the operating system. It provides feedback about the strength of passwords based on the types of audit required to recover the password and the length of time required to do so. The end result is a state of the art tool for password auditing and recovery that serves to guide organizational policies and procedures. There are many uses for auditing user passwords. First and foremost is for a system administrator to audit the strength of the passwords their users are using. Weak passwords represent vulnerability points for any organization, and uncovering these vulnerabilities is the first step toward reducing them. Administrators can use corporate password policies, and for some environments, filtered password generators to improve the quality of passwords used in their organizations. But without testing the passwords chosen by users or generated against a real world password auditor, the administrator is taking a chance at the amount of time required for an external attacker or malicious insider to uncover the passwords. In other cases LC4 can be used to streamline the migration or upgrading of users from one authentication system to another. Lastly, LC4 can serve to recover a lost or forgotten password to permit re-entry to a system from which an administrator is locked out. Installing and Uninstalling LC4
Registering LC4LC4 provides a 15 day free trial period, during which you have access to all features with the exception of the brute force crack. Paying to register LC4 provides you with an Unlock Code which allows full and continued use of the product.
LC4 is licensed on a per machine basis, and each machine generates a unique LC4 Serial Number. When you register, you'll be asked to provide your name, address, credit card info, email address and the LC4 Serial Number. Note this means you must download and install LC4 and obtain the Serial Number from your installation before you can register it. To obtain your installation's Serial Number, launch LC4, and click 'Register' from the LC4 splash screen. This opens a Registration dialog that provides your Serial Number. When you register, you receive a unique Unlock Code for your installation. Enter this code in the LC4 Registration dialog to unlock the product. Reinstalling LC4If you want to reinstall LC4 on new machine or operating system, you'll need to obtain a new Unlock Code for it. To do so, install LC4 in the new environment and then copy the installation's new Serial Number, which you can obtain from Help .. About or from the Splash screen that appears when you launch the product. Then click here to obtain an Unlock Code for your new installation.
*The SANS Institute. Ten Most Critical Internet Security Threats - The Experts' Consensus. January, 2001.
|