Yet Another useful paper

[Colin Plumb]

In article <2743 at epimass.EPI.COM> jbuck at epimass.EPI.COM (Joe Buck) writes:
>Irrelevant, because not all passwords are equally probable.

This is true, but that's the system administrator's problem.  As soon as
you go beyond simple derivitaves of words (transposition, random
capitalisation, etc.), there is no word list a password cracker can
use, and brute-force search is the only way.

My general rule is that a password must be something which has never,
to the best of your knowledge, been written down anywhere in the world.

My objection to shadow password files is that the layer of security they
provide relies on the unreadability of the file by non-root people.
Unix is not particularly secure this way.  There are probably half a
dozen ways to get a copy of a root-read-only file on any Unix system;
the bugs don't help you do anything nastier than forge mail (L.sys),
so aren't pursued with any great alacrity.

Come on, don't you know a suid program that doesn't check its input files'
permisisons properly and obligingly spits it out (perhaps slightly mangled)
as output?
-- 
	-Colin (uunet!microsof!w-colinp)