ruby-password 0.15.5

data/pwgen.1

@@ -0,0 +1,83 @@
+.\" $Id: pwgen.1,v 1.2 2004/04/13 00:01:07 ianmacd Exp $
+.\" 
+.TH PWGEN 1 "April 2004" "pwgen"
+.SH NAME
+pwgen \- generate pronounceable passwords
+.SH SYNOPSIS
+.B pwgen
+[
+.I OPTION
+]
+[
+.I password_length
+]
+[
+.I number_passwords
+]
+.SH DESCRIPTION
+.B pwgen
+generates passwords which are designed to be easily memorised by humans,
+whilst being as secure as possible.
+.PP
+The
+.B pwgen
+program is designed
+to be used both interactively, and in shell scripts. Hence, 
+its default behaviour differs depending on whether the standard output
+is a tty device or a pipe to another program. Used interactively, 
+.B pwgen 
+will display a screenful of passwords, allowing the user to pick a single 
+password, and then quickly erase the screen. This prevents someone from
+being able to "shoulder-surf" the user's chosen password.
+.PP
+When standard output is not a tty, 
+.B pwgen
+will only generate one password, as this tends to be much more convenient
+for shell scripts. This also assures that
+.B pwgen
+is compatible with other versions of this program.
+.B
+.SH OPTIONS
+.TP
+.B \-c, --capitalise, --capitalize
+Include at least one capital letter in the password. This is the default 
+if the standard output is a tty device.
+.TP
+.B \-C
+Print the generated passwords in columns. This is the default if the 
+standard output is a tty device.
+.TP
+.B \-n, --numerals
+Include at least one number in the password. This is the default
+if the standard output is a tty device.
+.TP
+.B \--no-numerals
+Don't include a number in the generated passwords.
+.TP
+.B \--no-capitalise, --no-capitalize
+Don't bother to include any capital letters in the generated passwords.
+.TP
+.B \-s, --secure
+Generate completely random, hard-to-memorise paswords. These should
+only be used for machine passwords, since otherwise it's almost
+guaranteed that users will simply write the password on a piece of 
+paper taped to the monitor...
+.TP
+.B \-v, --version
+Display the program version and exit.
+.TP
+.B \-h, --help
+Display a help message and exit.
+.TP
+.B \-1
+Print the generated passwords one per line.
+.SH AUTHOR
+This version of 
+.B pwgen
+was written by Ian Macdonald <ian@caliban.org>.
+It is modelled after a program originally written by Brandon S. Allbery and
+then later extensively modified by Olaf Titz, Jim Lynch, and others. It was
+later rewritten from scratch by Theodore Ts'o. This man page is lifted largely
+from Theodore Ts'o's man page.
+.SH SEE ALSO
+.BR passwd (1)

data/rbcrack.c

@@ -0,0 +1,113 @@
+/* rbcrack.c - a Ruby interface to CrackLib
+ * 
+ * $Id: rbcrack.c,v 1.20 2006/03/02 19:41:44 ianmacd Exp $
+ *
+ * Version : 0.5.3
+ * Author  : Ian Macdonald <ian@caliban.org>
+ *
+ * Copyright (C) 2002-2006 Ian Macdonald
+ *
+ *   This program is free software; you can redistribute it and/or modify
+ *   it under the terms of the GNU General Public License as published by
+ *   the Free Software Foundation; either version 2, or (at your option)
+ *   any later version.
+ *
+ *   This program is distributed in the hope that it will be useful,
+ *   but WITHOUT ANY WARRANTY; without even the implied warranty of
+ *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ *   GNU General Public License for more details.
+ *
+ *   You should have received a copy of the GNU General Public License
+ *   along with this program; if not, write to the Free Software Foundation,
+ *   Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
+ */
+
+#include <ruby.h>
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <unistd.h>
+#include <errno.h>
+#include <crack.h>
+
+#include "rbcrack.h"
+
+
+VALUE ePassword_DictionaryError;
+VALUE ePassword_WeakPassword;
+
+
+/* <b>check</b><em>(dict=nil)</em>
+ *
+ * This interfaces to LibCrack to check the strength of the password. If
+ * _dict_ is given, it is the path to the CrackLib dictionary, minus the
+ * file's extension. For example, if the dictionary is located at
+ * <tt>/usr/lib/cracklib_dict.pwd</tt>, _dict_ would be
+ * <tt>/usr/lib/cracklib_dict</tt>. If it is not given, the dictionary found
+ * at build time will be used.
+ *
+ * If a path is given that does not lead to a legible dictionary, a
+ * Password::DictionaryError exception is raised. On success, +true+ is
+ * returned. On failure, a Password::WeakPassword exception is raised.
+ */
+static VALUE passwd_check(VALUE self, VALUE args)
+{
+    VALUE dict;
+    char *objection;
+    char *buffer;
+
+    /* pop the one and only argument we may have been passed */
+    dict = rb_ary_pop(args);
+
+    if (dict == Qnil || strcmp(STR2CSTR(dict), "") == 0) {
+	/* no argument passed, so use default location from rbcrack.h */
+	dict = rb_str_new2(CRACK_DICT);
+    } else {
+	buffer = malloc(strlen(STR2CSTR(dict)) + 8);
+	strcpy(buffer, STR2CSTR(dict));
+	strcat(buffer, ".pwd");
+
+	if (access(buffer, R_OK) != 0) {
+	    free(buffer);
+	    rb_raise(ePassword_DictionaryError, "%s", strerror(errno));
+	}
+
+	free(buffer);
+
+    }
+
+    /* perform check on password */
+    objection = FascistCheck(STR2CSTR(self), STR2CSTR(dict));
+
+    /* return true on success; raise an exception otherwise */
+    if (objection) {
+	rb_raise(ePassword_WeakPassword, "%s", objection);
+    } else {
+	return Qtrue;
+    }
+
+}
+
+/* initialize this class */
+void Init_cracklib()
+{
+    VALUE cPassword;
+
+    /* define the Password class */
+    cPassword = rb_define_class("Password", rb_cString);
+
+    /* define the Password::DictionaryError exception */
+    ePassword_DictionaryError =
+	rb_define_class_under(cPassword, "DictionaryError",
+			      rb_eStandardError);
+
+    /* define the Password::WeakPassword exception */
+    ePassword_WeakPassword =
+	rb_define_class_under(cPassword, "WeakPassword",
+			      rb_eStandardError);
+
+    /* define the Password.check method */
+    rb_define_method(cPassword, "check", passwd_check, -2);
+
+    return;
+}

data/ruby-password.spec

@@ -0,0 +1,153 @@
+# $Id: ruby-password.spec,v 1.21 2006/03/02 19:53:18 ianmacd Exp $
+#
+
+Summary: A password handling library for Ruby with interface to CrackLib
+Name: ruby-password
+Version: 0.5.3
+Release: 1
+License: GPL
+Group: Applications/Ruby
+Source: http://www.caliban.org/files/ruby/%{name}-%{version}.tar.gz
+URL: http://www.caliban.org/ruby/
+Packager: Ian Macdonald <ian@caliban.org>
+BuildRoot: /var/tmp/%{name}-%{version}
+BuildRequires: ruby, cracklib, cracklib-dicts
+Requires: ruby-termios, cracklib, cracklib-dicts
+
+%define ruby18 %( [ `ruby -r rbconfig -e 'print Config::CONFIG["MAJOR"], ".", Config::CONFIG["MINOR"]'` = '1.8' ] && echo 1 || echo 0 )
+
+# build documentation if we have rdoc on the build system
+%define rdoc %( type rdoc > /dev/null && echo 1 || echo 0 )
+
+%if %{ruby18}
+Requires: ruby >= 1.8.0
+%else
+Requires: ruby >= 1.6.0
+%endif
+
+%description
+Ruby/Password is a suite of password handling methods for Ruby. It supports
+the manual entry of passwords from the keyboard in both buffered and
+unbuffered modes, password strength checking, random password generation,
+phonemic password generation (for easy memorisation by human-beings) and the
+encryption of passwords.
+
+%prep
+%setup
+
+%build
+ruby extconf.rb
+make
+
+%clean
+rm -rf $RPM_BUILD_ROOT
+
+%install
+rm -rf $RPM_BUILD_ROOT
+make DESTDIR=$RPM_BUILD_ROOT install
+install -d $RPM_BUILD_ROOT%{_mandir}/man1
+install pwgen.1 $RPM_BUILD_ROOT%{_mandir}/man1
+gzip -9 $RPM_BUILD_ROOT%{_mandir}/man1/pwgen.1
+install -d $RPM_BUILD_ROOT%{_bindir}
+install -m755 example/pwgen $RPM_BUILD_ROOT%{_bindir}
+%if %{rdoc}
+  rdocpath=`ruby -rrdoc/ri/ri_paths -e 'puts RI::Paths::PATH[1] ||
+					     RI::Paths::PATH[0]'`
+  rdoc -r -o $RPM_BUILD_ROOT$rdocpath -x CVS *.c lib
+  rm $RPM_BUILD_ROOT$rdocpath/created.rid
+%endif
+find $RPM_BUILD_ROOT -type f -print | \
+  ruby -pe 'sub(%r(^'$RPM_BUILD_ROOT'), "")' > %{name}-%{version}-filelist
+%if %{rdoc}
+  echo '%%docdir' $rdocpath >> %{name}-%{version}-filelist
+%endif
+
+find $RPM_BUILD_ROOT -type f -print | \
+    ruby -pe 'sub(%r(^'$RPM_BUILD_ROOT'), "")' > %{name}-%{version}-filelist
+
+%files -f %{name}-%{version}-filelist
+%defattr(-,root,root)
+%doc CHANGES COPYING INSTALL README
+%doc example/example.rb
+
+%changelog
+* Thu Mar  2 2006 Ian Macdonald <ian@caliban.org> 0.5.3-1
+- 0.5.3
+- Build environment no longer uses packer.h if available.
+- Package RDoc documentation in form usable by ri, rather than in HTML.
+
+* Sat Sep  4 2004 Ian Macdonald <ian@caliban.org> 0.5.2-1
+- 0.5.2
+- Build environment modified to search for the system dictionary in the
+  additional location of /var/cache/cracklib/cracklib_dict.pwd, which is where
+  it is on Debian Linux.
+
+* Mon Apr 12 2004 Ian Macdonald <ian@caliban.org> 0.5.1-1
+- 0.5.1
+- Password.get would throw an exception in the unlikely event that STDIN
+  reached EOF without any input.
+- pwgen now supports a -v or --version flag.
+
+* Fri Apr  9 2004 Ian Macdonald <ian@caliban.org> 0.5.0-1
+- 0.5.0
+- A new example program, pwgen, has been added, complete with man page.
+- A new class method, Password.phonemic, generates phonemic passwords.
+- The old Password.random method has been renamed Password.urandom and
+  replaced by a new, portable Password.random.
+- Password.get will now detect whether STDIN is connected to a tty. If not, no
+  password prompt is displayed and no attempt will be made to manipulate
+  terminal echo.
+- The prompt parameter to Password.get and Password.getc must now be passed in
+  its entirety.
+- Running password.rb directly will now result in a call to Password.phonemic
+  and the display of the resulting password.
+- The Password::BadDictionary exception has been renamed
+  Password::DictionaryError and made a subclass of StandardError instead of
+  RuntimeError.
+- The CryptError exception has been moved to Password::CryptError and is now a
+  subclass of StandardError instead of RuntimeError.
+- A new constant, PASSWD_CHARS, gives the list of characters from which
+  automatically generated passwords will be chosen. Note that Password.urandom
+  will use the additional characters '+' and '/'.
+- A new constant, SALT_CHARS, gives the list of characters valid as salt
+  characters when invoking Password#crypt.
+- Password.getc and Password.random now return an instance of Password, not
+  String.
+- A Password::CryptError exception is now raised if the salt passed to
+  Password#crypt contains a bad character.
+- RDoc documentation has been added.
+- The old RD documentation has been removed.
+- Unit-tests are now included with the software to verify its correct working.
+
+* Wed Nov 12 2003 Ian Macdonald <ian@caliban.org> 0.4.1-1
+- 0.4.1
+- Warning in Ruby 1.8.x caused by use of rb_enable_super() has been fixed
+
+* Wed Jun 10 2003 Ian Macdonald <ian@caliban.org> 0.4.0-1
+- 0.4.0
+- When a bad dictionary path is provided to Password#check, a
+  Password::BadDictionary exception is now raised
+- Turn off Ruby buffering for Password.getc, as this resulted in the prompt
+  not being displayed when called by Ruby 1.8
+
+* Wed Oct  2 2002 Ian Macdonald <ian@caliban.org> 0.3.0-1
+- 0.3.0
+- Password#check now raises a Password::WeakPassword exception when provided
+  with a weak password
+
+* Sat Sep 28 2002 Ian Macdonald <ian@caliban.org> 0.2.1-1
+- 0.2.1
+- Portability enhancements from Akinori MUSHA <knu@iDaemons.org>
+
+* Wed Sep 18 2002 Ian Macdonald <ian@caliban.org> 0.2.0-1
+- 0.2.0
+- Password#check now returns true on success, and raises a Crack::WeakPassword
+  exception on failure
+
+* Tue Jun 18 2002 Ian Macdonald <ian@caliban.org> 0.1.1-1
+- 0.1.1
+- Password.get now returns an instance of Password, not String
+- Password.new now defaults to assigning a null string
+
+* Tue Jun 18 2002 Ian Macdonald <ian@caliban.org> 0.1.0-1
+- 0.1.0

data/test/tc_password.rb

@@ -0,0 +1,89 @@
+#!/usr/bin/ruby -w
+#
+# $Id: tc_password.rb,v 1.3 2004/04/12 08:50:06 ianmacd Exp $
+
+$: << File.dirname(__FILE__) + "/.." << File.dirname(__FILE__) + "/../lib"
+
+require 'test/unit'
+require 'password'
+
+
+TIMES = 1000
+LENGTH = 32
+
+
+class TC_PasswordTest < Test::Unit::TestCase
+
+  def test_check
+    # Check for a weak password.
+    pw = Password.new( 'foo' )
+    assert_raises( Password::WeakPassword ) { pw.check }
+
+    # Check for a good password.
+    pw = Password.new( 'G@7flAxg' )
+    assert_nothing_raised { pw.check }
+
+    # Check for an exception on bad dictionary path.
+    assert_raises( Password::DictionaryError ) { pw.check( '/tmp/nodict' ) }
+  end
+
+  def test_phonemic
+    TIMES.times do |t|
+      pw = Password.phonemic( LENGTH )
+      assert( pw.length == LENGTH, "bad length: #{pw.length}, not #{LENGTH}" )
+    end
+  end
+
+  def test_phonemic_one_case
+    TIMES.times do |t|
+      pw = Password.phonemic( LENGTH, Password::ONE_CASE )
+      assert( pw =~ /[A-Z]/, "#{pw} has no upper-case letter" )
+      assert( pw.length == LENGTH, "bad length: #{pw.length}, not #{LENGTH}" )
+    end
+  end
+
+  def test_phonemic_one_digit
+    TIMES.times do |t|
+      pw = Password.phonemic( LENGTH, Password::ONE_DIGIT )
+      assert( pw =~ /[0-9]/, "#{pw} has no digit" )
+      assert( pw.length == LENGTH, "bad length: #{pw.length}, not #{LENGTH}" )
+    end
+  end
+
+  def test_phonemic_one_case_one_digit
+    TIMES.times do |t|
+      pw = Password.phonemic( LENGTH, Password::ONE_CASE |
+				      Password::ONE_DIGIT )
+      assert( pw =~ /[A-Z]/, "#{pw} has no upper-case letter" )
+      assert( pw =~ /[0-9]/, "#{pw} has no digit" )
+      assert( pw.length == LENGTH, "bad length: #{pw.length}, not #{LENGTH}" )
+    end
+  end
+
+  def test_random
+    TIMES.times do |t|
+      pw = Password.random( LENGTH )
+      assert( pw.length == LENGTH, "bad length: #{pw.length}, not #{LENGTH}" )
+    end
+  end
+
+  def test_urandom
+    TIMES.times do |t|
+      pw = Password.urandom( LENGTH )
+      assert( pw.length == LENGTH, "bad length: #{pw.length}, not #{LENGTH}" )
+    end
+  end
+
+  def test_crypt
+    pw = Password.random( LENGTH )
+    assert_nothing_raised { pw.crypt( Password::DES ) }
+    assert_nothing_raised { pw.crypt( Password::MD5 ) }
+    assert_raises( Password::CryptError ) { pw.crypt( Password::DES, '@*' ) }
+  end
+
+  def test_null_stdin
+    $stdin.reopen( File.new( '/dev/null' ) )
+    assert_nothing_raised { Password.get }
+  end
+
+end

metadata

@@ -0,0 +1,115 @@
+--- !ruby/object:Gem::Specification 
+name: ruby-password
+version: !ruby/object:Gem::Version 
+  hash: 41
+  prerelease: false
+  segments: 
+  - 0
+  - 15
+  - 5
+  version: 0.15.5
+platform: ruby
+authors: 
+- Albert Lash
+- Ian Macdonald
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-06-29 00:00:00 -07:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: ruby-termios
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: shoulda
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :development
+  version_requirements: *id002
+description: |-
+  Ruby/Password is a suite of password handling methods for Ruby. It supports
+  the manual entry of passwords from the keyboard in both buffered and
+  unbuffered modes, password strength checking, random password generation,
+  phonemic password generation (for easy memorisation by human-beings) and the
+  encryption of passwords.
+email: albert.lash@docunext.com
+executables: []
+
+extensions: 
+- extconf.rb
+extra_rdoc_files: 
+- README
+files: 
+- .gitignore
+- CHANGES
+- COPYING
+- Changelog
+- INSTALL
+- README
+- Rakefile
+- VERSION
+- example/example.rb
+- example/pwgen
+- extconf.rb
+- lib/password.rb
+- pwgen.1
+- rbcrack.c
+- ruby-password.spec
+- test/tc_password.rb
+has_rdoc: true
+homepage: http://www.docunext.com/
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: A password handling library for Ruby with interface to CrackLib
+test_files: 
+- test/tc_password.rb