Thanks! Didn't know this didn't apply to root! Very much appreciated!
Chris On Sat, Nov 05, 2005 at 05:33:16PM -0800, Gregory K. Ruiz-Ade wrote: > On Nov 5, 2005, at 3:42 PM, Todd Walton wrote: > > >password required pam_cracklib.so difok=2 minlen=8 dcredit=2 > >ocredit=2 retry=3 > >password sufficient pam_unix.so nullok md5 shadow use_authtok > >password required pam_deny.so > > > >This doesn't enforce strong passwords, it just says, 'You don't have > >one. Reconsider.' (Effectively.) > > Well, if you're not root, and you try to set a weak password, it > won't let you. > > I.e., if I try to use a bad password on my FC4 box while trying to > change it, I get this: > > [EMAIL PROTECTED](pts/1):~ 1 $ passwd > Changing password for user gkade. > Changing password for gkade > (current) UNIX password: > New UNIX password: > BAD PASSWORD: it is based on a dictionary word > New UNIX password: > BAD PASSWORD: it is based on a dictionary word > New UNIX password: > Retype new UNIX password: > > The only reason it let me go on was because I typed a sufficiently > "good" password that last time. > > On my FC4 box, the options for pam_cracklib are in /usr/share/doc/ > pam-0.79/README.pam_cracklib. > > Gregory > > -- > Gregory K. Ruiz-Ade <[EMAIL PROTECTED]> > OpenPGP Key ID: EAF4844B keyserver: pgpkeys.mit.edu > > > > -- > [email protected] > http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list -- _______________________________________ Christian Seberino, Ph.D. SPAWAR Systems Center San Diego Code 2872 49258 Mills Street, Room 158 San Diego, CA 92152-5385 U.S.A. Phone: (619) 553-9973 Fax : (619) 553-6521 Email: [EMAIL PROTECTED] _______________________________________ -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
