On 13 Jan 2009 at 17:30, Gavin Wilby wrote:
> Hello all,
>
> Is there an easy way at a domain level to stop certain passwords being
> used to log on.
WS 2003 or 2008? WS 2008's AD has much improved password-policies, see
Security Watch: Windows Domain Password Policies
http://technet.microsoft.com/en-us/magazine/2007.12.securitywatch.aspx
> I want to try and prevent certain words and phrases being used (like the one
> thats the default for a reset for instance).
>
> Either my GoogleFoo is rubbish, or im missing something.
Commercial app (not familiar with it, but it showed up in a Google for
http://www.google.com/search?q=password+rules+windows
Password Policy / Password Filter for stronger Windows Passwords
http://www.specopssoft.com/products/specopspasswordpolicy/
If you have a corporate policy against the use of certain words, you could use
the tools from this page to test for them, then apply discipline as needed.
"John the Ripper" and/or one of the "pwdumpX" utilities would help here.
--
Angus Scott-Fleming
GeoApps, Tucson, Arizona
1-520-290-5038
+-----------------------------------+
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
