| < rra-c-util 4.4 | Russ Allbery > Eagle's Path > May 2012 | filter-syslog 2.2 > |
This was a bit of a last-minute project for this afternoon, since we discovered some inconsistencies between our documentation and the rules that our password strength checking was imposing. While I was at it, I tightened some other rules that had been reported over the past couple of years.
In the embedded CrackLib library, the minimum password length is now eight characters, and a duplicated dictionary word is also rejected. In the wrapper around the CrackLib call, krb5-strength also now checks for a password formed by adding digits to the end of the username and rejects that.
This release also allows building with the system CrackLib if one doesn't mind the weaker checking, and fixes the internal CrackLib to use consistent variable sizes on 32-bit and 64-bit platforms. This will fix interoperability issues with databases built on a platform with a different native integer size.
There are also lots of updates to the build system, test infrastructure, and portability layer, since it had been a while since I released this package.
You can get the latest version from the krb5-strength distribution page.
Posted: 2012-05-11 15:10 — Why no comments?
| < rra-c-util 4.4 | Russ Allbery > Eagle's Path > May 2012 | filter-syslog 2.2 > |