08-28-2002
SecurID is our method
Okay okay... I know that SSH is a great way to secure passwords, but I wasn't around when they decided what to use.
Although telnet is the standard for my company, we do have another way to protect passwords from being captured.
We use the SecurID technology that only allows for 1 time unique passwords for all users logging in to our systems. It is used with a PIN that the user has and a rotating 6 digit number that changes every 60 seconds.
I might be wrong on this, but SecurID is a very good security measure to protect passwords.
Don't get me wrong SSH is great, but my company has the SecurID technology as our enterprise solution.
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi!
I have a Tru64 40f box and I am trying to figure out how the banner is displayed after login.
Now the sys admin (who is now gone) has a message that is displayed for all users AFTER login.
In addition to the /etc/issue and the /etc/motd files another file with a longer message is... (2 Replies)
Discussion started by: sdharmap
2 Replies
2. UNIX for Dummies Questions & Answers
I dont want the kernal info and OP type to come up to every one that logs in to my server. How do I edit the telnet banner to say something different. (1 Reply)
Discussion started by: macdonto
1 Replies
3. UNIX for Advanced & Expert Users
I need to put a telnet banner on AIX 4.3 and 5.1 servers, so the users can see a warning message before logging into the system. I know /etc/motd will give the message after the login. Basically what I am asking is how do I tell system to read the /etc/issue file on AIX?.
Thank you, in advance... (4 Replies)
Discussion started by: smohd
4 Replies
4. UNIX for Dummies Questions & Answers
How can I display a message to the crt whenever someone logs on? They do not see a unix prompt. I need to easily update this also. (2 Replies)
Discussion started by: Beetlejuice
2 Replies
5. UNIX for Dummies Questions & Answers
On my Ultra 60, when booting and at the banner screen, on the top left is a picture of a globe. On another machine (Ultra 60) its a picture of a Sun. Is this something on the graphics card, or is this picture located somewhere else and able to be changed? (0 Replies)
Discussion started by: ridgeback00
0 Replies
6. Shell Programming and Scripting
Somewhat long story:
I have a simple Perl CGI script that uses Expect to Telnet to a device and grab some data, and then spits it back to Perl for display on the Webpage.
This works for many devices I've tried, but one device just fails, it keeps rejecting the password on this device, only... (1 Reply)
Discussion started by: jondo
1 Replies
7. HP-UX
why I didn't set /etc/inetd.conf
telnet stream tcp nowait root /usr/lbin/telnetd \
telnetd -b /etc/issue
only
telnet stream tcp nowait root /usr/lbin/telnetd
in /etc/ineted.conf
but when I telnet my HPUX machine
it shows those message
HP-UX hp1008 B.11.31 U ia64 (tb)
login:
... (1 Reply)
Discussion started by: alert0919
1 Replies
8. UNIX for Dummies Questions & Answers
Hi,
I was writing one script which includes to switch to the another telnet automatically from the present telnet server. I was using rlogin but firstly it takes the same user name of the present telnet and secondly it is prompting for the password.
But i want to switch to the another telnet... (2 Replies)
Discussion started by: Prateek
2 Replies
9. UNIX for Dummies Questions & Answers
Hi,
I want to know the difference between these two services. Both are under xinetd. Both are used for enabling and disabling Telnet service. So, can somebody please explain me the difference between the two ?
Thanks in advance :) (0 Replies)
Discussion started by: kashifsd17
0 Replies
LEARN ABOUT DEBIAN
makepasswd
makepasswd(1) UNIX Reference Manual makepasswd(1)
NAME
makepasswd - generate and/or encrypt passwords
SYNOPSIS
makepasswd [ --chars N ] [ --clearfrom file ] [ --count N ] [ --crypt | --nocrypt | --crypt-md5 ] [ --cryptsalt N ] [ --help ] [ --maxchars
N ] [ --minchars N ] [ --randomseed N ] [ --rerandom N ] [ --repeatpass N ] [ --string string ] [ --verbose | --noverbose ]
DESCRIPTION
makepasswd generates true random passwords using /dev/urandom, with the emphasis on security over pronounceability. It can also encrypt
plaintext passwords given on the command line.
OPTIONS
--chars N
Generate passwords with exactly N characters (do not use with options --minchars and --maxchars).
--clearfrom FILE
Use password from FILE instead of generating passwords. Requires the --crypt or the --crypt-md5 options; may not be used with these
options: --chars, --maxchars, --minchars, --count, --string, --nocrypt. Trailing newlines are removed but other white space is not.
--count N
Produce a total of N passwords (the default is one).
--crypt
Produce encrypted passwords.
--crypt-md5
Produce encrypted passwords using the MD5 digest (hash) algorithm.
--cryptsalt N
Use crypt() salt N, a positive number <= 4096. If random seeds are desired, specify a zero value (the default).
--help Ignore other operands and produce only a help display.
--maxchars N
Generate passwords with at most N characters (default = 10).
--minchars N
Generate passwords with at least N characters (default = 8).
--nocrypt
Do not encrypt the generated password(s) (the default).
--noverbose
Display no labels on output (the default).
--randomseed N
Use random number seed N, between 0 and 2^32 inclusive. A zero value results in a real-random seed. This generates much less
secure passwords than the default; not only does it generate predictable passwords due to the fixed seed, but the range of available
seeds is 32 bits rather than the default of 256 bits, and cannot be changed without breaking expectations of previous users of this
option. If possible, do not use this option.
--rerandom N
Set the random seed value every N values used. Specify zero to use a single seed value (the default). Specify one to get true-ran-
dom passwords, though note that doing this too frequently will deplete the supply of entropy available in the kernel's entropy pool.
--repeatpass N
Use each password N times (4096 maximum, --crypt must be set and --cryptsalt may not be set).
--string STRING
Use the characters in STRING to generate random passwords.
--verbose
Display labelling information on output.
HISTORY
makepasswd was originally part of the mkircconf program used to centrally administer the Linux Internet Support Cooperative IRC network.
It may potentially be of use in any situation where passwords must be secure and need not be memorized by humans.
Colin Watson modified it to use OpenSSL's pseudo-random number generator.
COPYRIGHT
Copyright (c) 1997-1998 by lilo <lilo@linpeople.org>. All rights are reserved by the author. This program may be used under the terms of
version 2 of the GNU Public License.
SEE ALSO
passwd(5)
Debian Distribution 1998 February 9 makepasswd(1)