Question : password audit

I'm looking to perform a password audit across a "typical network". Basically checking for weak passwords. This is a single factor setup and they dont have budget to pursue a 2-factor implementation at present. The obvious passwords to check are local accounts on member workstations and member servers, passwords assocaited with corporate databases sql server where mixed auth is on, and oracle databases. What other network devices would you include in the scope of performing a network password review? Got some ideas such as routers firewalls etc but any input welcome as for each type I want to research encryption used and tools available to test strength...

Answer : password audit

pma111,

Give these two distros a try. Backtrack and PHLAK both work well and were designed to do exactly what you are trying to do.

http://distrowatch.com/table.php?distribution=backtrack

http://distrowatch.com/table.php?distribution=PHLAK

marakush

Random Solutions

Get identity of last insert (ASP.NET MVC Entity framework)

Visual Studio 2005 not working on Windows 7

Understanding Analog Telephone Adaptors

Need help building an Apache module

Using Message Header decoration in operation contract of WCF

Cant move or purge mailbox

SQL in C# code .. Reading Output Parameters.

Run the first php script in background - When done - run the next script ...

visual studio 2010 not automatically rebuild

Set Up ETags - IIS 6