home *** CD-ROM | disk | FTP | other *** search
- From: alecm@uk-usenet.uk.sun.com (Alec Muffett - Sun IS - System Administrator)
- Newsgroups: comp.security.misc,alt.security
- Subject: New Package Announcement: CrackLib
- Date: 18 Jun 1993 13:01:15 GMT
- Organization: Sun Microsystems (UK)
- Message-ID: <1vsear$bpi@uk-usenet.UK.Sun.COM>
- Keywords: password security proactive
-
-
- "CrackLib" - a (hopefully portable) proactive password checking
- library, has been posted to "comp.sources.misc".
-
- The announcement is attached below.
-
- - alec
- --
-
- CrackLib is a library containing a C function (well, lots of functions
- really, but you only need to use one of them) which may be used in a
- "passwd"-like program.
-
- The idea is simple: try to prevent users from choosing passwords that
- could be guessed by "Crack" by filtering them out, at source.
-
- CrackLib is an offshoot of the the version 5 "Crack" software, and
- contains a considerable number of ideas nicked from the new software.
- At the time of writing, Crack 5 is incomplete (still awaiting purchase
- of my home box) - but I though I could share this with you.
-
- NOTE THIS WELL: CrackLib is NOT a replacement "passwd" program.
- CrackLib is a LIBRARY. CrackLib is what trendy marketdroid types would
- probably call an "enabler".
-
- The idea is that you wire it into your _own_ "passwd" program (if you
- have source); alternatively, you wire it into something like "shadow"
- >From off of the net. You can use it almost _everywhere_.
-
- FOR YOUR INFORMATION:
-
- CrackLib has been tested mostly on Suns. If you can point me at ways
- round portability problems (eg: static linking, other libraries, etc)
- I'd be most grateful.
-
- A reference copy of CrackLib (+ large dictionary) can be found via
- anonymous FTP at:
-
- black.ox.ac.uk:~ftp/src/security/cracklib25.tar.Z
-
-
- - alec
-
-
-
-
-
