Simple Password Strength Checking Module
PAM (Pluggable Authentication Modules) is a system security tool that
allows system administrators to set authentication policies without
having to recompile programs that do authentication.
pam_passwdqc is a simple password strength checking module forPAM-aware
password changing programs. In addition to checking regular passwords,
it offers support for passphrases and can provide randomly generated
ones.
- Developed at Linux-PAM
- Sources inherited from project openSUSE:Factory
-
2
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout devel:ARM:Factory:Contrib:ILP32/pam_passwdqc && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
baselibs.conf | 0000000084 84 Bytes | |
dlopen.sh | 0000001356 1.32 KB | |
pam_passwdqc.changes | 0000003399 3.32 KB | |
pam_passwdqc.spec | 0000004227 4.13 KB | |
passwdqc-1.2.2.tar.gz | 0000047274 46.2 KB |
Revision 16 (latest revision is 24)
Stephan Kulow (coolo)
accepted
request 106451
from
Michael Calmer (mcalmer)
(revision 16)
- update to version 1.2.2 - When matching against the reversed new password, always pass the original non-reversed new password (possibly with a substring removed) into is_simple(), but remove or check the correct substring in is_based() considering that the matching is possibly being done against the reversed password. - New command-line options for pwqcheck: -1 and -2 for reading just 1 and just 2 lines from stdin, respectively (instead of reading 3 lines, which is the default), --multi for checking multiple passphrases at once (until EOF). - With randomly-generated passphrases, encode more entropy per separator character (by increasing the number of different separators from 8 to 16) and per word (by altering the case of the first letter of each word), which increases the default generated passphrase size from 42 to 47 bits. - Substring matching has been enhanced to partially discount rather than fully remove weak substrings, support leetspeak, and detect some common sequences of characters (sequential digits, letters in alphabetical order, adjacent keys on a QWERTY keyboard). - Detect and allow passphrases with non-ASCII characters in the words. - A number of optimizations have been made resulting in significant speedup of passwdqc_check() on real-world passwords.
Comments 1
passwdqc 1.3.1 has been released; http://www.openwall.com/passwdqc/passwdqc-1.3.1.tar.gz