Failed to Implement Password Complexity using PAM ( Pluggable Authentication Module )
1 Attachment(s)
Hello,
I am new to unix systems. I have an assignment in which I need to implement a password complexity on CentOS 3.9 Final Serv. The Pluggable Authentication Module is installed in it. The requirements are as follows - It should be 8 Char long Should have atleast one lowercase, one uppercase, and one numerical char I read many how-to and tutorial and came to conclusion that I need to edit /etc/pam.d/system-auth to get my work done. I also found out that I need to use pam_cracklib for that purpose. Following is the screenshot of my system-auth file. http://img25.imageshack.us/img25/1508/centos.png Now when I try to change the password of user account with weak password like 'passws' (without quote) it accepts which ideally it should not. I need to use this version of CentOS for this assignment. So I can not upgrade it. Other thing is I do not know if my system uses PAM or not though it has /etc/pam.d dir. And if It does, how can I know which version of PAM it is running? Please help me with it. Thanks, Rahil |
Quote:
The CentOS forums even have a document telling you how to set this up, with the rules and explanations. http://www.centos.org/docs/5/html/CD...rd_Policy.html |
Hi TB0ne,
Thank you for your reply. I now understand that being root is like having no rules for you. So, when I tried the same thing with normal user account I could not set weak password. Thank you very much for your help. :) |
http://oss.tresys.com/projects/clip/...ownloadRelease
the PAM rpms listed in the link have a patch that enforces root to follow the same password requirements as the users. here is the actual patch for enforcing root to follow the password reqs. This is based on Linux-PAM-0.99.6.2.tar.bz2 source from RHEL 5 Code:
diff -ur ~/modules/pam_cracklib/pam_cracklib.c ./modules/pam_cracklib/pam_crackl |
Quote:
|
All times are GMT -5. The time now is 01:14 AM. |