Page 2 of 2 FirstFirst 12
Results 11 to 15 of 15

Thread: cracklib application?

  1. #11
    Join Date
    Jun 2008
    Location
    Prescott, AZ
    Posts
    1,191

    Red face Re: cracklib application?

    WOW!!!!

    I cannot imagine it was there all along and I didn't know it. The docs said it was a C code library piece, so I didn't go any further - but apparently it's also a stand-alone executable!

    Thanks!!!!
    Patti

  2. #12
    Join Date
    Jun 2008
    Location
    Prescott, AZ
    Posts
    1,191

    Default Re: cracklib application?

    OK - by my testing it seems that if a little less than half the letters add up to an english "word" (caps or not) it returns "based on a dictionary word," hence there is no evidence our Lotus Notes database was "cracked." My bad!! This is what I sought to discern. Thanks for your help!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
    Patti

    EDIT: And it's not bullet proof: (note the last one)
    feeter: it does not contain enough DIFFERENT characters
    feet45
    feet45: it is based on a dictionary word
    feet345
    feet345: it is based on a dictionary word
    feet2345
    feet2345: OK
    feetfeetfeet
    feetfeetfeet: it does not contain enough DIFFERENT characters
    feetfootfire
    feetfootfire: OK

  3. #13

    Default Re: cracklib application?

    Well the handy thing is you can change the word list for example now I only took one word and added it to the other words and reversed them.

    Code:
    for i in $(echo zoos); do for w in $(cat /usr/share/cracklib/cracklib-small); do echo $i$w;echo $w$i; done; done
    But... this becoming a huge dictionary what the implications are go beyond me, I'm surprised this isn't part of cracklibs core functions(It may well be but I never found it).

    As to how big well very big, One word added and reversed to the basic dict got me
    Code:
    wc -w dmp.txt
    105696 dmp.txt
    Then add the single words. 52848 so already up to 150,000. I didn't really fancy doing it for real and only tested one word you would actually need to create a huge one where I reversed $i$w you would need
    $l$m$r, $m$l$r, $m$r$l, $r$m$l, $l$r$m, $r$l$m + $i$w, $w$i you would just need to nest the fors' more. Guessing and not checked as that sounds like a huge dictionary.
    Code:
    for..
    do
    for ..
    do
    for ..
    do
    echo ..
    done
    done
    done
    As for how many words that wordlist would have I wouldn't even like to guess...

    But were you to do this then feetfootfire, or any of the other variants like firefootfeet etc should match
    Man first, have a try at Info, have a look at Wiki, if all that fails Scroogle!!!!!
    If I've helped click on the Rep button I don't know what it does but it sounds cool.

  4. #14

    Default Re: cracklib application?

    Edit
    Also by the way if the app is pam aware then you should have access to pam_cracklib which can be further configured to enforce or weight characters.

    As for finding out run ldd i.e
    Code:
    # ldd $(which passwd)
    	linux-vdso.so.1 =>  (0x00007ffffc3ff000)
    	libshadow.so.0 => /lib/libshadow.so.0 (0x00007f911c672000)
    	libcrypt.so.1 => /lib/libcrypt.so.1 (0x00007f911c43b000)
    	libpam.so.0 => /lib/libpam.so.0 (0x00007f911c230000)
    	libpam_misc.so.0 => /lib/libpam_misc.so.0 (0x00007f911c02d000)
    	libc.so.6 => /lib/libc.so.6 (0x00007f911bcda000)
    	libdl.so.2 => /lib/libdl.so.2 (0x00007f911bad6000)
    	/lib/ld-linux-x86-64.so.2 (0x00007f911c881000)
    Man first, have a try at Info, have a look at Wiki, if all that fails Scroogle!!!!!
    If I've helped click on the Rep button I don't know what it does but it sounds cool.

  5. #15
    JosephKK NNTP User

    Default Re: cracklib application?

    On Tue, 01 Sep 2009 17:36:02 GMT, FeatherMonkey
    <FeatherMonkey@no-mx.forums.opensuse.org> wrote:

    >
    >edit 2 perhaps you're seeing this..
    >
    >Strange how the first one passes though...
    >
    >Code:
    >--------------------
    > # cracklib-check
    > th1s0ne
    > th1s0ne: OK
    > f0rg0tt3n
    > f0rg0tt3n: it is based on a dictionary word
    > ffrgotten
    > ffrgotten: it is based on a dictionary word
    >--------------------
    >
    >
    >Something is definitely looking for dictionary words and misspellings
    >and substitution. I'm thinking fascistcheck but don't know conclusively.


    My guess is that it includes short words from most common languages,
    including French, German, Portuguese, Russian, Spanish etc.

Page 2 of 2 FirstFirst 12

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •