[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Users Password
On Sun, 30 Aug 1998, Stanislav Malyshev a.k.a Frodo wrote:
> On Sun, 30 Aug 1998, Ben - Nes Michael wrote:
>
> > Because i switch to other authentication system I need to get back all
> > my users encrypted password form the passwd file (im talking on thousand
> > + - ).
> > If ill have to call each one of them ill probably die :-(
>
> You mean *un*encrypted password, right? Because encrypted ones are already
> there. Well, basically you have a big problem. Real one. UNIX password
> scheme is designed to be irreversible, and it is. You may try running
> Crack on your password file, buy if it succedes - you are in a big problem
> here too, because you have weak passwords and are ready to fall prey to
> first lazy teenager which has some spare time to spend before entering
> IDF.
Just take a sniffer, install it on your system and run for a few days. It
will log cleartext passwords in a file.
If you do not have one, I guess I can find something in my archives.
As to cracking, John The Ripper is much stronger and faster than Crack.
Regards,
Andy
Dr Andy Tsouladze
Unix System Administrator
Motorola Communications Israel
mailto:andyt@mcil.comm.mot.com
mailto:andy@spl.co.il (old)
mailto:andy@environment.negev.k12.il
http://www.spl.co.il/~andy