Re: Picky passwd for GNU/Linux

comphelp@xxxxxxxxx (Todd H.) writes:

Unruh <unruh-spam@xxxxxxxxxxxxxx> writes:

Testing after the fact is very hard.

Actually, if you have root on the box, it's pretty darned easy. john
is not that hard to use.

It is not very hard to try, it is very hard to succeed. A password cracker
can only try a very very limited subset of even insecure passwords.

Much better to test the passwords before they are used.

No argument there.

cracklib is
a possibility. (pam_cracklib) as I have stated.

Todd H.