[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Using John the Ripper with Heimdal



Lance Brown wrote:

> I've been asked to implement password strength checking on a Kerberos
> domain using a Heimdal KDC.  I see that John the Ripper can handle
> Kerberos v5 TGTs, and found the file format required from the list
> archives, but have not been able to learn how to get the TGT data out of
> Heimdal in v5 TGT format.

Not exactly sure if this is what you are looking for, but I
build Heimdal linked against the cracklib library which, because
kadmind and kpasswdd is linked to cracklib, strong passwords
are enforced on password creation and password changing. Not
sure if you are asking about run-time password checking, though.

--
Randy