Can anyone suggest any apps/scripts for bulk generating passwords from real names (e.g. jsmith from John Smith) that would check for duplicated in an existing smbpasswd or passwd file and append a number to the username (e.g. jsmith1, jsmith2). Thanks Lee Baker MEng MIEE Music Technology Coordinator Email: <mailto:lbaker@mcauley.org.uk> lbaker@mcauley.org.uk <http://www.pa.mcauley.org.uk/> http://www.pa.mcauley.org.uk Information contained in this email or any attachment may be of a confidential nature which should not be disclosed to, copied or used by anyone other than the addressee. If you receive this email in error, please delete the email from your computer.
Lee, Are you suggesting you wish to generate easily crackable passwords for all your users? I would strongly advise against this. How soon do you want your systems broken into? I would suggest you assign fully randomized passwords (mixed-case + numbers and characters), and then set a strict password requirements on your domain controller and workstations. Then make sure your users change their passwords on their first logon to something they can remember. I.E. Take a phrase, The "Quick Brown Fox" is getting very old! Abbreviate it T"QBF"igvo! And wala, a hard to crack password that's easy to remember. -- Aaron Zirbes Systems Administrator Environmental Health Sciences University of Minnesota Lee Baker wrote:> Can anyone suggest any apps/scripts for bulk generating passwords from > real names (e.g. jsmith from John Smith) that would check for duplicated > in an existing smbpasswd or passwd file and append a number to the > username (e.g. jsmith1, jsmith2). > > Thanks > > Lee Baker MEng MIEE > Music Technology Coordinator > Email: <mailto:lbaker@mcauley.org.uk> lbaker@mcauley.org.uk > <http://www.pa.mcauley.org.uk/> http://www.pa.mcauley.org.uk > Information contained in this email or any attachment may be of a > confidential nature which should not be disclosed to, copied or used by > anyone other than the addressee. If you receive this email in error, > please delete the email from your computer. >
Aaron J. Zirbes:> Are you suggesting you wish to generate easily crackable passwords for > all your users? I would strongly advise against this. How soon do you > want your systems broken into? > > I would suggest you assign fully randomized passwords (mixed-case + > numbers and characters), and then set a strict password requirements on > your domain controller and workstations. Then make sure your users change > their passwords on their first logon to something they can remember.So you never heard of APG and never heard of shell/awk scripting and never heard of LDAP. Learn about them, before posting such nonsense again. --Tonni -- mail: tonye@billy.demon.nl http://www.billy.demon.nl
The OP was asking the question because he is very busy running a 2000 user site and implementing full AD style Group Policies from Samba (something I imagine many people might actually like to benefit from at some point) and didn't want to repeat work done by others in writing a script to work out usernames. The unfortunate part was that he sent the message before 10am and before he'd had his coffee and therefore stupidly wrote password generator and not username generator. Yes he has heard of scriptng and appologises for posting "such nonsense" but even geniuses have their off days - no offence taken! Lee -----Original Message----- From: samba-bounces+lbaker=mcauley.org.uk@lists.samba.org [mailto:samba-bounces+lbaker=mcauley.org.uk@lists.samba.org] On Behalf Of David Landgren Sent: 18 March 2005 09:15 To: samba@lists.samba.org Subject: Re: [Samba] Password Generator On Tue, 15 Mar 2005 22:45:05 +0100 (CET), Tony Earnshaw <tonye@billy.demon.nl> wrote:> > Aaron J. Zirbes: > > > Are you suggesting you wish to generate easily crackable passwordsfor> > all your users? I would strongly advise against this. How soon doyou> > want your systems broken into? > > > > I would suggest you assign fully randomized passwords (mixed-case + > > numbers and characters), and then set a strict password requirementson> > your domain controller and workstations. Then make sure your userschange> > their passwords on their first logon to something they can remember. > > So you never heard of APG and never heard of shell/awk scripting andnever> heard of LDAP. Learn about them, before posting such nonsense again.Jeeze Tony, you spread your good humour and grace every where you go, don't you? The OP was asking the question because he didn't know of such things, and was seeking advice. We were all clueless newbies once. This is a very high traffic list: please engage your brain before posting such nonsense again. David -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba