Results 1 to 5 of 5

Thread: Making passwd less restrictive

Hybrid View

  1. #1

    Making passwd less restrictive

    Hi, I usually would never do this but so many people are complaining, I need to do something. I set the users so they have to change their passwords every six months. I usually change passwds with root so I don't see this but if you try to change your passwd as a normal user it throws all this crap at you, 'too short' 'that is a dictionary word' Even if you put a word and numbers it complains. Is there a way to stop it from being so picky?

    RH 7.3 are the systems we use.

    Thanks.

  2. #2
    Moderator
    Good Guru
    Schotty's Avatar
    Join Date
    Jul 2001
    Location
    Milwaukee, WI
    Posts
    5,760

    Re:Making passwd less restrictive

    I have this too, and havent really dove into anything to remove that restriction. I can take a look for ya. I think that it may be a conf file entry in /etc/ so ... I am at a client's right now waiting for some scans to finish, but as soon as I get home I can check my linux box and try it out.

  3. #3

    Re:Making passwd less restrictive

    I like that as root it lets you ignore this, because I create test users with weak passwds and it's very convenient.

  4. #4
    Moderator
    Good Guru
    Schotty's Avatar
    Join Date
    Jul 2001
    Location
    Milwaukee, WI
    Posts
    5,760

    Re:Making passwd less restrictive

    Allright, here ya go. Its a PAM module that is set to not allow that crap. So if ye looketh here you will see the section that states :

    To ensure that new passwords are strong, configure Linux to run cracking tests on new passwords and allow only strong passwords to be use. This is done by adding the following lines to /etc/pam.d/passwd:

    * password required pam_cracklib.so retry=3 minlength=10
    pam_cracklib.so is a file. You may need to give the full address of the file, such as /lib/security/pam_cracklib.so (the location on Mandrake 9.0). The "retry=3" means the user is allowed three attemtpts to create a qualified password. "minlength=10" sets the minimum length of the password to 10 charactes. You can adjust the retries and minlength as needed.
    * password required pam_unix.so use_authtok md5
    This directs the system to use MD5 password hashes instead of the default DES hashes. Again, you may need to provided the full address to the file, such as /lib/security/pam_unix.so on Mandrake 9.0.
    And you can now have a minlength of 2 if you want. Nice eh?

  5. #5
    Advisor Outlaw's Avatar
    Join Date
    May 2001
    Location
    Clifton Park, NY
    Posts
    630

    Re:Making passwd less restrictive

    I don't listen to my users' pleas for leniency. Bwahahahaha!!

Similar Threads

  1. passwd vs shadow file
    By haariseshu in forum Redhat / Fedora
    Replies: 3
    Last Post: 09-14-2012, 08:08 PM
  2. passwd
    By abhishek_kumar in forum General Chat
    Replies: 1
    Last Post: 11-03-2006, 12:27 PM
  3. opennms username,passwd
    By pavangogineni in forum Linux - Hardware, Networking & Security
    Replies: 2
    Last Post: 02-14-2006, 07:26 AM
  4. SSH or dial up passwd?
    By datamike in forum Linux - General Topics
    Replies: 1
    Last Post: 05-01-2002, 11:01 AM
  5. Dial up Passwd?
    By datamike in forum Linux - General Topics
    Replies: 2
    Last Post: 04-03-2002, 11:59 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •