john the ripper for private keys?
From: Bernd Schubert (bernd-schubert_at_web.de)
Date: 03/15/04
- Previous message: Dan Oviatt: "Re: core dump with openssh 3.8 on HP11 with PAM"
- Next in thread: all mail refused: "Re: john the ripper for private keys?"
- Reply: all mail refused: "Re: john the ripper for private keys?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 15 Mar 2004 17:56:30 +0100
Hi,
I would like to check the private keys of all users for empty or too easy
passwords. Does someone here knows a program or method how to do this?
IMHO, administrators should really be able to disallow empty passphrases for
keys used by the ssh-agent! Currently this seems not to be possible, so I'm
looking for a method how to check it.
Actually I think it would be pretty easy to make ssh-add and ssh-agent not
to like empty or too easy passwords as default (the same way as most
passwd's currently do).
Thanks,
Bernd
- Previous message: Dan Oviatt: "Re: core dump with openssh 3.8 on HP11 with PAM"
- Next in thread: all mail refused: "Re: john the ripper for private keys?"
- Reply: all mail refused: "Re: john the ripper for private keys?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
