hi,

We are migrating a *NIX app to Linux RHEL5 and need to maintain the same password policy, which allow dictionary words!

How do I disable dictionary checking on the RH box?

I've tried editing /etc/pam.d/passwd to the following:
#%PAM-1.0
auth include system-auth
account include system-auth
password required /lib/security/pam_unix.so md5 shadow nullok

But I still keep getting the following error when trying to change a user password (works find from root!):

it is based on a dictionary word

I'm completely stumped & frustrated!!!

Please help?

Thanks

H.

is just a warning. It does actually change the password.
Just type in the password two times and it will accept it.

Anyhow, it is always advisable to keep your passwords complex. It might make you frustrated but its for the best.

If you aren't able to use complex passwords, I hope you at least have a clipping level set, as well as log and monitor its account lockouts.

>>>W3bD3v1 : is just a warning. It does actually change the password.
Just type in the password two times and it will accept it.


I've tried it three times & eventually fails with the following

Retype new UNIX password:
it is based on a dictionary word
passwd: Authentication token manipulation error

and doesn't change the p/w...

Is there something else I need to change?

thanks again,

H.

"Your password isn't complicated enough" annoys me big time.
My solution:
Become root
Assign a new password.
It works (for me)

ahh, I thought he was doing it with root privileges.

It's a bug in rhel5 which doesn't allow you to disable the dictionary checking, - should be fixed in 5.3

To get around the problem simply clear out the dictionary...

# echo word | packer /usr/share/cracklib/pw_dict

You should be able to use any dictionary word!!! (except "word")

Worked for me! - Thanks to RH support for this one!