[svlug] testing a password with bash.

[Warren Turkal]

You shouldn't have to reinvent the wheel on this one. There are
actually good systems for checking the quality of passwords. I would
look at your distribution and see what you can find. If you are using
OpenLDAP, there is a password policy overlay that may be useful to
you. Also, I would caution you about forcing passwords to be too
complicated as you will find that folks start writing down their
passwords at that point.

You could also try one time passwords.

wt

On Thu, May 1, 2008 at 3:29 AM, James Sparenberg <james at linuxrebel.org> wrote:
> All,
>
>    Bash question for all of you.   I'm putting together a script that reaches
>  out to all my systems based on user role, and can either add, del, or update
>  a users name/passwd.  Now comes the question.
>
>    I want to be able to verify quality of the password.  # of characters is
>  easy.  pipe it through wc -m and see if it's greater than the minimum.  How
>  though would you recommend I go about verifying things like
>
>  1.  Not based on Dictionary word.
>  2.  Has Upper and lower case
>  3.  Contains at least 1 number or special character.
>
>  Special rules of sort.  It has to work on FreeBSD, RH and Debian.  I run a
>  multi-Ethnic environment ;)   here and need to be sure that ever system
>  produces the same results.
>
>  Suggestions? (and switching to XYZ lang isn't really an option here.)
>
>  James
>
>  _______________________________________________
>  svlug mailing list
>  svlug at lists.svlug.org
>  http://lists.svlug.org/lists/listinfo/svlug
>