[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: cracklib password check

To: heimdal-discuss@sics.se
Subject: Re: cracklib password check
From: Keith Matthews <heimdal@frequentous.co.uk>
Date: Tue, 5 Apr 2005 19:16:25 +0100
In-Reply-To: <a347173da462f10ad11988190e2e7ad3@jpl.nasa.gov>
Organization: Frequentous Consultants Ltd
References: <4250452E.4000208@ambigc.com><fb5c636e1c7872111a233fc2876a02b5@oxy.edu><42523515.2060307@ambigc.com><a347173da462f10ad11988190e2e7ad3@jpl.nasa.gov>
Sender: owner-heimdal-discuss@sics.se

On Tue, 5 Apr 2005 10:24:30 -0700
"Henry B. Hotz" <hotz@jpl.nasa.gov> wrote:

> On Apr 4, 2005, at 11:49 PM, Chris Hamilton wrote:
> 
> > Well I am curious if this work is of some real use.  If there is a  
> > better a place to run checks instead of directly against the KDC,
> > then  I'll not bother.  Most Unix-likes have PAM, so I figure that
> > is where  most people would place checks(otherwise, why wouldn't
> > someone have  done this earlier?) in that environment.
> 
> Linux IMO over-uses PAM, but a password management entry is standard. 
>  
> 

Correction - some Linux distros over-use PAM, some refuse to use it at
all (Slackware and Rock being examples that come immediately to mind).

Pat V's reasons for not using it are reported as a combination of
disliking the complexity it introduces and a dislike of it's somewhat
spotty security history.

Follow-Ups:
- Re: cracklib password check
  - From: Chris Hamilton <chris@ambigc.com>

References:
- cracklib password check
  - From: Chris Hamilton <chris@ambigc.com>
- Re: cracklib password check
  - From: Chris Hamilton <chris@ambigc.com>
- Re: cracklib password check
  - From: "Henry B. Hotz" <hotz@jpl.nasa.gov>

Prev by Date: Re: cracklib password check
Next by Date: Re: cracklib password check
Prev by thread: Re: cracklib password check
Next by thread: Re: cracklib password check
Index(es):
- Date
- Thread