Hi all, Something I've thought about for a long time, and now that CrackLib is a maintained and stable package, I would like to propose that the community consider adding this package to Chapter 6 in the LFS build.
Here are some things to consider. 1) A system is not secure if strong passwords are not enforced. 2) CrackLib is now a maintained and stable package hosted on Sourceforge. 3) There is a very good word dictionary available at the CrackLib Sourceforge site. 4) Shadow supports CrackLib and it would be a simple task to integrate into LFS and the Shadow instructions. 5) There are already instructions prepared for CrackLib and I would volunteer to create the patch to integrate CrackLib into Chapter 6. 6) Currently, CrackLib cannot be integrated into LFS using BLFS instructions without adding Linux-PAM also. Even if you simply install the CrackLib package, Shadow would have to be recompiled to use the now-installed CrackLib libraries and the CRACKLIB_DICTPATH parameter modified in the /etc/login.defs file. 7) See #1. LFS should attempt to provide readers with a stable (which it already does) and *secure* system. Adding CrackLib is a step in the right direction (one of the biggest things which can be done) in securing the system. -- Randy rmlscsi: [GNU ld version 2.15.94.0.2 20041220] [gcc (GCC) 3.4.3] [GNU C Library stable release version 2.3.4] [Linux 2.6.10 i686] 16:40:00 up 124 days, 16:13, 2 users, load average: 0.07, 0.04, 0.15 -- http://linuxfromscratch.org/mailman/listinfo/lfs-dev FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
