Trump, Tariffs, and the Canadian Economy
5 days ago
Visitors
Popular Posts
-
Please read my previous post before you watch this video. 1. Setting Your Own Website On CentOS 6 (PHP 5 & MySQL 5) 2. Instal...
-
In my previous post, I showed you how to build an website from scratch with PHP and MySQL. Now, I will start to build my forum using phpB... -
This guide will help you to create a Task Schedule to Shutdown or Restart Windows Server Automatically. First, you have to download PSshu... -
It is so sad that the graphic management VMware ESXi is not support Linux OS so today I will write about how to use vCLI on Linux. -
There are many solutions that help typing Vietnamese on Linux (RedHat/Fedora/CentOS). One of those is SCIM. It is very simple to install Sc...
My Blog List
Managing Password Policies On Linux
Tuesday, July 26, 2011
There are a few different ways you can manage the password policies on you system.
Step 1. Look at the /etc/login.defs file, which controls password length, age, and expiration:
You can use the pam_cracklib and pam_passwdqc modules to enforce password length and complexity. Already defined by default as part of the password requirements, the pam_cracklib module can be changed to in corporate stricter requirement.
Step 2. View the current pam_cracklib policy:
You can additional parameters to increase (or decrease) the complexity and length of the password. You can gain “credit points” by using complexity within your password. Here are the available configuration options:
minlen Controls the minimum password length (default is 6)
retry Specifies the number of times to retry before an error is issued
difok Specifies the number of character that need to be different between password changes (default is 5)
dcredit Credit for digits in password (default is 1)
ucredit Credit for uppercase letters in password (default is 1)
lcredit Credit for lowercase letters in password (default is 1)
ocredit Credit for special characters in password (default is 1)
You need to back up password-auth file before you start to adjust anything in password policy.
Have fun!
