LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 07-06-2009, 01:17 AM   #1
vbo
Member
 
Registered: Jan 2006
Location: Turkey
Distribution: Pardus,Fedora,Suse,Many livedistros
Posts: 36

Rep: Reputation: 15
Password policy


Hi all,

I have Redhat EL 3,4,5 boxes and need to apply the password policy given below:

-Passwords to be changed at 90 days instead of 180
-Password change to be forced by the system
-Password length must be at least 6 characters long
-Last 3 passwords to be remembered by the system and dont let to be used at the password change
-When 6 continuous wrong login attemp made , the system should block that id
-Complexity (Optinional)

So pratically how can i do this all?

Regards
 
Old 07-06-2009, 08:15 AM   #2
AlucardZero
Senior Member
 
Registered: May 2006
Location: USA
Distribution: Debian
Posts: 4,570

Rep: Reputation: 510Reputation: 510Reputation: 510Reputation: 510Reputation: 510Reputation: 510
PAM. Specifically, the pam_cracklib and pam_unix lines in /etc/pam.d/system-auth (probably would work in other files as well but that's where mine are).

http://www.kernel.org/pub/linux/libs..._cracklib.html
http://www.redhat.com/docs/manuals/e...tion-pass.html
http://www.google.com (this is a subtle hint that this is an easy and common question whose answer you could find more quickly by searching)

Last edited by AlucardZero; 07-06-2009 at 08:17 AM.
 
Old 07-06-2009, 11:49 PM   #3
jschiwal
Guru
 
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 654Reputation: 654Reputation: 654Reputation: 654Reputation: 654Reputation: 654
Some of the items you mentioned are configured in the /etc/security/login.defs file. In particular, password expiry policy.

You may find this page helpful: http://brandonhutchinson.com/wiki/Linux_Password_Policy
 
Old 07-09-2009, 05:16 PM   #4
anomie
Senior Member
 
Registered: Nov 2004
Location: Texas
Distribution: RHEL, Scientific Linux, Debian, Fedora, FreeBSD
Posts: 3,925
Blog Entries: 5

Rep: Reputation: Disabled
Check out pam_passwdqc(8) - which is noted in the article above - as an alternative to pam_cracklib. I find it to be more straightforward and flexible, and better documented.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
password policy Nick Pontelando Linux - Security 9 08-15-2012 09:50 AM
How to set the password policy and lockout policy bin_shell Linux - Security 4 03-24-2010 03:30 PM
Password Policy jagnikam Linux - Security 1 08-22-2008 02:47 PM
Password policy sunhui Linux - Software 2 05-12-2006 03:19 AM
password policy ust Linux - Software 0 12-05-2005 12:44 AM


All times are GMT -5. The time now is 11:53 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration