Randy McMurchy wrote these words on 08/04/05 19:12 CST: > This is a stretch. To the best of my knowledge, all the CrackLib > library does is check that the password a user enters during the > password changing routine does not match something in the user's > entry in /etc/passwd and the password dictionary.
This may not be totally accurate. Upon reflection, it dawns on me that the CrackLib library may also check for re-used passwords and passwords too similar to the previous one. However, these are not "password policies cracklib likes". This is the default functionality of the CrackLib library. I have not looked at the source code for the fascistcheck function (which provides most of CrackLib's password checking ability), so there very well may be other things it checks to ensure that the password a user selects is "secure". -- Randy rmlscsi: [GNU ld version 2.15.94.0.2 20041220] [gcc (GCC) 3.4.3] [GNU C Library stable release version 2.3.4] [Linux 2.6.10 i686] 19:43:00 up 124 days, 19:16, 2 users, load average: 0.00, 0.04, 0.20 -- http://linuxfromscratch.org/mailman/listinfo/lfs-dev FAQ: http://www.linuxfromscratch.org/faq/ Unsubscribe: See the above information page
