Path: utzoo!attcan!uunet!mcsun!sunic!uupsi!nyser!rpi!zaphod.mps.ohio-state.edu!excelan!csibtfr!motcsd!hpda!hpcuhb!hpindda!kmont
From: kmont@hpindda.HP.COM (Kevin Montgomery)
Newsgroups: comp.unix.questions
Subject: Re: Passwords and salts
Message-ID: <4460007@hpindda.HP.COM>
Date: 11 Jan 90 22:28:41 GMT
References: <85606@linus.UUCP>
Organization: Bill and Dave's
Lines: 10

|>Just as a test, he wanted to find all the users whose passwords were
|>the same as their login names. He "cracked" about 35 passwords on the
|>first pass, including about 25 faculty accounts ...

even more, it's not that imaginative!  Me old roomie used to break passwords
by selecting one, taking the crypt salt, then looking for matches of the
crypt of the salt and the user's login and a few other "usual" passwords and,
upon this not working, tried it on all the words on the online dictionary.

now THAT's classy...