The cracklib package contains a library used to enforce strong passwords by comparing user selected passwords to words in a chosen wordlist.
Download (HTTP): http://www.crypticide.com/users/alecm/security/cracklib,2.7.tar.gz
Download MD5 sum (HTTP): 0c84ad7413d9dd3e5c2eaa5f97d53c4a
Download MD5 sum (FTP): 7f810e310c7f2df33d1eaa2b41ab2435
Download size: 21 KB
Estimated disk space required (with cracklib wordlist): 17 MB
Estimated build time: 0.10 SBU
You will also need to download a wordlist for use with cracklib. There are two wordlists to choose from at the following location. Use the cracklib word list for good security, or opt for the allwords word list for lightweight machines short on RAM. You can of course choose any other word list that you have at your disposal.
First, as the root user, install the chosen word list for cracklib:
install -d -m755 /usr/share/dict && install -m644 ../[wordlist] /usr/share/dict && ln -sf [wordlist] /usr/share/dict/words && echo $(hostname) >> /usr/share/dict/extra.words
The wordlist is linked to /usr/share/dict/words as historically, words is the primary wordlist in the /usr/share/dict directory. Additionally, the value of hostname is echoed to a file called extra.words. This extra file is intended to be a site specific list which includes easy to guess passwords such as company or department names, user's names, product names, computer names, domain names, etc.
Now apply the BLFS patch:
patch -Np1 -i ../cracklib,2.7-blfs-1.patch
If necessary, apply the Heimdal patch:
cp -R cracklib cracklib_krb5 && patch -Np1 -i ../cracklib,2.7-heimdal-1.patch
Finally, as the root user, install the package:
make install && rm /lib/libcrack.so && ln -sf ../../lib/libcrack.so.2.7 /usr/lib/libcrack.so
rm /lib/libcrack.so; ln -sf ... /usr/lib/libcrack.so: These two commands move the libcrack.so symlink from /lib to /usr/lib.
Last updated on 2005-02-26 08:46:21 -0700