[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Password quality?

To: full-disclosure <full-disclosure@lists.netsys.com>
Subject: [Full-Disclosure] Password quality?
From: Kristian Köhntopp <kris@koehntopp.de>
Date: Wed, 10 Dec 2003 11:24:34 +0100

I know how to check Unix and Windows passwords for quality - John the Ripper 
is quite an encompassing tool (http://www.openwall.com/john/).

I now need to check ssh2 and openssh private keys for policy compliance - do 
they have a password, and is it nontrivial?

Which tool am I going to use?

Kristian

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Password quality?
  - From: "Larry W. Cashdollar" <lwc@vapid.ath.cx>
- Re: [Full-Disclosure] Password quality?
  - From: petard <petard@freeshell.org>
- Re: [Full-Disclosure] Password quality?
  - From: the1@unixclan.net

Prev by Date: Re: [Full-Disclosure] RE: FWD: Internet Explorer URL parsing vulnerability
Next by Date: Re: [Full-Disclosure] Re: Internet Explorer URL parsing vulnerability
Previous by thread: Re: [Full-Disclosure] IE Unpatched Vuln Site?
Next by thread: Re: [Full-Disclosure] Password quality?
Index(es):
- Date
- Thread