Mike,
We had a brilliant wonderful student working for us (who we're now
desperately trying to talk into giving up graduate school in favor
of a real job back with us:-} ), who developed a kpwvalid that checked
for the following:
1) is password > 6 characters?
2) is password <= 20 characters?
3) does new password == old password?
4) does cracklib complain?
The cracklib in question is a prerelease of crack 5.0 (using a 12MB
dictionary).
So far, it's worked great for us (as far as we can tell), on both the
rs_aix32 and sgi_52 architectures.
Let me know if you'd be interested, I can try to arrange for permission
to make it more generally available.
--Judy Warren
Cornell Theory Center
mike ganzberger writes:
>
> AFS Folks;
>
> We've read in the AFS documentation about how a
> customized kpwvalid file, placed in the same area as
> kpasswd, can add criteria to user selection of passwords
> beyond the default requirement of 8 characters. We are
> interested in criteria such as requiring at least one
> non-alphabetic character, preventing use of user name in
> password, and optimally, checking against a dictionary
> for words.
>
> Has anyone else developed or found a kpwvalid that they
> are willing to share with us?
>
> Thanks.
>
> --------------------------------------------------------------------------
> _/ _/ _/_/_/ _/_/_/ _/_/_/ _/_/_/ Michael Ganzberger
> _/_/ _/ _/ _/ _/ _/ _/ Lawrence Livermore Lab.
> _/ _/ _/ _/_/ _/_/_/ _/ _/ P.O. Box 5509, L-561
> _/ _/_/ _/ _/ _/ _/ _/ Livermore Calif. 94551
> _/ _/ _/_/_/ _/ _/ _/_/_/ _/_/_/ tel: (510) 423-2674
> fax: (510) 422-0435
> National Energy Research SuperComputer Center internet: [EMAIL PROTECTED]
> --------------------------------------------------------------------------
>
>
