subject:"\[OCLUG\-Tech\] can one hack PAM to reuse a password that's not supposed to be reused\?"

Re: [OCLUG-Tech] can one hack PAM to reuse a password that's not supposed to be reused?

2017-03-21 Thread Scott Murphy

Supposedly in /etc/security/opasswd

> On Mar 21, 2017, at 9:49 AM, Robert P. J. Day  wrote:
> 
> 
>  i note from the docs that PAM supports preventing the reuse of a
> configurable number of old passwords with the use of the
> 
>  remember=n
> 
> however, where does PAM "remember" these passwords such that, if one
> had root access and could hack files, could one manually reset the
> list of remembered passwords? just curious.
> 
> rday
> 
> --
> 
> 
> Robert P. J. Day Ottawa, Ontario, CANADA
>http://crashcourse.ca
> 
> Twitter:   http://twitter.com/rpjday
> LinkedIn:   http://ca.linkedin.com/in/rpjday
> 
> 
> ___
> Linux mailing list
> Linux@lists.oclug.on.ca
> http://oclug.on.ca/mailman/listinfo/linux


___
Linux mailing list
Linux@lists.oclug.on.ca
http://oclug.on.ca/mailman/listinfo/linux

[OCLUG-Tech] can one hack PAM to reuse a password that's not supposed to be reused?

2017-03-21 Thread Robert P. J. Day


  i note from the docs that PAM supports preventing the reuse of a
configurable number of old passwords with the use of the

  remember=n

however, where does PAM "remember" these passwords such that, if one
had root access and could hack files, could one manually reset the
list of remembered passwords? just curious.

rday

-- 


Robert P. J. Day Ottawa, Ontario, CANADA
http://crashcourse.ca

Twitter:   http://twitter.com/rpjday
LinkedIn:   http://ca.linkedin.com/in/rpjday


___
Linux mailing list
Linux@lists.oclug.on.ca
http://oclug.on.ca/mailman/listinfo/linux

Re: [OCLUG-Tech] can one hack PAM to reuse a password that's not supposed to be reused?

[OCLUG-Tech] can one hack PAM to reuse a password that's not supposed to be reused?

2 matches

Site Navigation

Mail list logo

Footer information