This shows you the differences between two versions of the page.
passwdqc [2019/07/11 13:40] mator [By distribution] replaced fedora link to a working one |
passwdqc [2021/02/18 17:15] (current) solar [By distribution] Update Gentoo link (package rename) |
||
---|---|---|---|
Line 8: | Line 8: | ||
* [[passwdqc/solaris]] | * [[passwdqc/solaris]] | ||
* [[passwdqc/rockyou]] | * [[passwdqc/rockyou]] | ||
- | * [[http://www.openwall.com/lists/john-users/2011/02/20/2|passwdqc tested on KoreLogic's DEFCON 2010 contest passwords]] | + | * [[https://www.openwall.com/lists/john-users/2011/02/20/2|passwdqc tested on KoreLogic's DEFCON 2010 contest passwords]] |
- | * [[http://codeidol.com/unix/bsd/The-Boot-and-Login-Environments/Create-an-Effective,-Reusable-Password-Policy/|A book chapter on how to enable and configure passwdqc on FreeBSD 5+]] | + | * [[https://daemonforums.org/showthread.php?t=1019#post7413|A forum posting that shows how to enable and configure passwdqc on FreeBSD 5+]] (also talks about pam_cracklib on CentOS, but fails to mention its drawbacks) |
- | * [[http://daemonforums.org/showthread.php?t=1019#post7413|A forum posting that shows how to enable and configure passwdqc on FreeBSD 5+]] (also talks about pam_cracklib on CentOS, but fails to mention its drawbacks) | + | * [[https://serverfault.com/questions/101998/enforcing-that-passwords-contain-a-certain-mixture-of-characters-on-red-hat-linux|How to enable and configure pam_passwdqc on a RHEL/Fedora/CentOS system]] from the NSA's "Guide to the Secure Configuration of Red Hat Enterprise Linux 5" (that's section 2.3.3.1.2 on page 38 in Revision 3 of the Guide) |
- | * [[http://serverfault.com/questions/101998/enforcing-that-passwords-contain-a-certain-mixture-of-characters-on-red-hat-linux|How to enable and configure pam_passwdqc on a RHEL/Fedora/CentOS system]] from the NSA's [[http://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf|Guide to the Secure Configuration of Red Hat Enterprise Linux 5]] (that's section 2.3.3.1.2 on page 38 in Revision 3 of the Guide) | + | |
- | * [[http://www.cromwell-intl.com/security/linux-hardening.html|Three configuration examples for Linux, with explanations]] (scroll down or search for "Enforce password quality" or just go to the end of the lengthy web page) | + | |
* [[http://www.hpug.org.uk/sites/default/files/EPING%20May%202007.pdf|How to obtain, install, and configure pam_passwdqc on HP-UX 11]] (PDF, go to page 16 for "How to configure PAM passwdqc password strength checking") | * [[http://www.hpug.org.uk/sites/default/files/EPING%20May%202007.pdf|How to obtain, install, and configure pam_passwdqc on HP-UX 11]] (PDF, go to page 16 for "How to configure PAM passwdqc password strength checking") | ||
- | * [[http://undeadly.org/cgi?action=article&sid=20100621091027|The OpenBSD Journal (undeadly.org) story on passwdqc, including brief instructions and OpenBSD-specific info]] | + | * [[https://undeadly.org/cgi?action=article&sid=20100621091027|The OpenBSD Journal (undeadly.org) story on passwdqc, including brief instructions and OpenBSD-specific info]] |
- | * [[http://www.slideshare.net/antondedov5/zn2013-testing-of-password-policy-abridged|Testing of password policy (ZeroNights 2013 slides)]] by Anton Dedov (Parallels), comparing passwdqc 1.3.0 with default settings against 4 other password strength checking tools | + | * [[https://www.slideshare.net/antondedov5/zn2013-testing-of-password-policy-abridged|Testing of password policy (ZeroNights 2013 slides)]] by Anton Dedov (Parallels), comparing passwdqc 1.3.0 with default settings against 4 other password strength checking tools |
* [[http://password-policy-testing.wikidot.com/results|Comparing the tools against 3 formal policy descriptions]], also by Anton Dedov | * [[http://password-policy-testing.wikidot.com/results|Comparing the tools against 3 formal policy descriptions]], also by Anton Dedov | ||
- | |||
- | **Please feel free to add** to the list above, as well as to the one below. External links are OK, but except for links to packages it is preferred that you **create new pages** right on this wiki, under the passwdqc DokuWiki namespace - e.g., there could be a page with [[passwdqc/hp-ux|instructions on setting up passwdqc on HP-UX]] (it does not exist yet). To edit this wiki, you need to [[http://openwall.info/wiki/passwdqc?do=register|register for an account]] and [[http://openwall.info/wiki/passwdqc?do=login|log in]], then use the "Edit this page" (when on an existing page) and "Create this page" (when on an URL for a page that does not exist yet) buttons at the bottom. You may also use the "Subscribe Changes" button to be notified (by e-mail) of any changes to the wiki page you're on. | ||
===== Non-English materials ===== | ===== Non-English materials ===== | ||
- | * Russian discussion threads around the passwdqc 1.2.0 release and password security in general on [[http://www.opennet.ru/opennews/art.shtml?num=25838|OpenNet]] and [[http://www.linux.org.ru/news/security/4666947|linux.org.ru]] with many answers by [[:people/solar|Solar Designer]] | + | * Russian discussion threads around the passwdqc 1.2.0 release and password security in general on [[https://www.opennet.ru/opennews/art.shtml?num=25838|OpenNet]] and [[https://www.linux.org.ru/news/security/4666947|linux.org.ru]] with many answers by [[:people/solar|Solar Designer]] |
===== Ports to and bindings for other programming languages ===== | ===== Ports to and bindings for other programming languages ===== | ||
Line 28: | Line 24: | ||
These are third-party and unofficial: | These are third-party and unofficial: | ||
- | * [[https://github.com/dchest/passwordcheck|Go bindings]] ([[https://godoc.org/github.com/dchest/passwordcheck|documentation]]) by Dmitry Chestnykh | + | * [[https://github.com/dchest/passwordcheck|Go bindings]] ([[https://godoc.org/github.com/dchest/passwordcheck|documentation]]) by [[https://dchest.com/about/|Dmitry Chestnykh]] |
- | * [[https://github.com/odin-public/passwdqc-js|JavaScript port]] ([[http://jsfiddle.net/burashka/mdhs4/2/embedded/result/|demo]]) by Parallels (now Odin) | + | * [[https://github.com/odin-public/passwdqc-js|JavaScript port]] ([[https://jsfiddle.net/burashka/mdhs4/2/embedded/result/|demo]]) by Parallels (now Odin) |
- | * [[http://search.cpan.org/dist/Data-Password-passwdqc/|Perl module in CPAN]] by Sherwin Daganato | + | * [[https://metacpan.org/release/Data-Password-passwdqc|Perl module in CPAN]] by Sherwin Daganato |
* [[https://github.com/helver/PHP_passwdqc_check|PHP_passwdqc_check]] by Eric Helvey, and [[https://github.com/timoh6/GenPhrase|GenPhrase]] by Timo H | * [[https://github.com/helver/PHP_passwdqc_check|PHP_passwdqc_check]] by Eric Helvey, and [[https://github.com/timoh6/GenPhrase|GenPhrase]] by Timo H | ||
* [[https://alastairs-place.net/projects/pwtools/|Python package]] (reimplementation with changes) by Alastair Houghton | * [[https://alastairs-place.net/projects/pwtools/|Python package]] (reimplementation with changes) by Alastair Houghton | ||
- | * [[http://download.openwall.net/pub/projects/passwdqc/contrib/ruby/|Ruby projects derived from passwdqc]] by different authors | + | * [[https://download.openwall.net/pub/projects/passwdqc/contrib/ruby/|Ruby projects derived from passwdqc]] by different authors |
- | [[http://download.openwall.net/pub/projects/passwdqc/contrib/|Local copies of these resources]] | + | [[https://download.openwall.net/pub/projects/passwdqc/contrib/|Local copies of these resources]] |
Additionally, passwdqc 1.3.0+ includes an official PHP wrapper script pwqcheck.php for the command-line pwqcheck program. | Additionally, passwdqc 1.3.0+ includes an official PHP wrapper script pwqcheck.php for the command-line pwqcheck program. | ||
Line 60: | Line 56: | ||
=== Gentoo === | === Gentoo === | ||
- | * [[https://packages.gentoo.org/packages/sys-auth/pam_passwdqc]] | + | * [[https://packages.gentoo.org/packages/sys-auth/passwdqc]] |
=== NetBSD === | === NetBSD === |