- Timestamp:
- 08/10/2005 12:33:22 AM (19 years ago)
- Branches:
- 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 6.2, 6.2.0, 6.2.0-rc1, 6.2.0-rc2, 6.3, 6.3-rc1, 6.3-rc2, 6.3-rc3, 7.10, 7.4, 7.5, 7.6, 7.6-blfs, 7.6-systemd, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, gnome, kde5-13430, kde5-14269, kde5-14686, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, krejzi/svn, lazarus, lxqt, nosym, perl-modules, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, systemd-11177, systemd-13485, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal
- Children:
- 6b104248
- Parents:
- c0ed152
- File:
-
- 1 edited
-
postlfs/security/cracklib.xml (modified) (4 diffs)
Legend:
- Unmodified
- Added
- Removed
-
postlfs/security/cracklib.xml
rc0ed152 r22861b3 62 62 <itemizedlist spacing='compact'> 63 63 <listitem> 64 <para>Recommended word list (size: &crackdict-size;; 65 md5sum: &crackdict-md5sum;): <ulink url="&crackdict-download;"/></para> 64 <para>Recommended word list for English-speaking locales (size: 65 &crackdict-size;; md5sum: &crackdict-md5sum;): 66 <ulink url="&crackdict-download;"/></para> 67 </listitem> 68 <listitem> 69 <para>Additional word lists: 70 <ulink url="http://www.cotse.com/tools/wordlists.htm"/></para> 66 71 </listitem> 67 72 <listitem> … … 72 77 </itemizedlist> 73 78 74 <!-- <para>You will also need to download a wordlist for use with 75 <application>cracklib</application>. There are two wordlists 76 to choose from at the following location. Use the 77 <filename>cracklib</filename> word list for good security, or 78 opt for the <filename>allwords</filename> word list for 79 lightweight machines short on RAM. You can of course choose 80 any other word list that you have at your disposal.</para> --> 79 <important> 80 <para>Users tend to base their passwords on regular words of the spoken 81 language, and crackers know that. <application>CrackLib</application> is 82 intended to filter out such bad passwords at the source using a 83 dictionary created from word lists. To accomplish this, the word list(s) 84 for use with <application>CrackLib</application> must be an exhaustive 85 list of words and word-based keystroke combinations likely to be chosen 86 by users of the system as (guessable) passwords.</para> 87 88 <para>The default word list recommended above for downloading mostly 89 satisfies this role in English-speaking countries. In other situations, 90 it may be necessary to download (or even create) additional word 91 lists.</para> 92 93 <para>Note that word lists suitable for spell-checking are not usable 94 as <application>CrackLib</application> word lists in countries with 95 non-Latin based alphabets, because of <quote>word-based keystroke 96 combinations</quote> that make bad passwords.</para> 97 </important> 81 98 82 99 </sect2> … … 102 119 <screen role="root"><userinput>make install && 103 120 mv -v /usr/lib/libcrack.so.2* /lib && 104 ln -v -sf ../../lib/libcrack.so.2.8.0 /usr/lib/libcrack.so && 105 install -v -m644 -D ../cracklib-words.gz \ 121 ln -v -sf ../../lib/libcrack.so.2.8.0 /usr/lib/libcrack.so</userinput></screen> 122 123 <para>The following commands can be used to install the recommended word 124 list. Other word lists (text based, one word per line) can also be used by 125 simply installing them into 126 <filename class='directory'>/usr/share/dict</filename>.</para> 127 128 <screen role="root"><userinput>install -v -m644 -D ../cracklib-words.gz \ 106 129 /usr/share/dict/cracklib-words.gz && 107 130 gunzip -v /usr/share/dict/cracklib-words.gz && … … 153 176 154 177 <para><command>create-cracklib-dict ...</command>: This command creates the 155 <application>CrackLib</application> dictionary from the word lists.</para> 178 <application>CrackLib</application> dictionary from the word lists. Modify 179 the command to add any additional word lists you have installed.</para> 156 180 157 181 </sect2>
Note:
See TracChangeset
for help on using the changeset viewer.
