Question : password audit

I'm looking to perform a password audit across a "typical network". Basically checking for weak passwords. This is a single factor setup and they dont have budget to pursue a 2-factor implementation at present. The obvious passwords to check are local accounts on member workstations and member servers, passwords assocaited with corporate databases sql server where mixed auth is on, and oracle databases. What other network devices would you include in the scope of performing a network password review? Got some ideas such as routers firewalls etc but any input welcome as for each type I want to research encryption used and tools available to test strength...

Answer : password audit

pma111,

Give these two distros a try. Backtrack and PHLAK both work well and were designed to do exactly what you are trying to do.

http://distrowatch.com/table.php?distribution=backtrack

http://distrowatch.com/table.php?distribution=PHLAK

marakush

Random Solutions

Registration/Evaluation ESxi 3.5 & Client Infrastructure

How to best deal with a Filemaker dinosaur?

mcafee EPO script to remove agent and virusscan

Resize a colum of a grid in the GUI?

Quoting array names in Associative Arrays in PHP in assignment and echo statements.

Public Folder "Pretty" names not showing up in GAL

Mac backup: unsupported file characters

Insert into MySQL Table from MSSQL Insert Trigger

How to upgrade RAM on a Server 2003 Standard SP2