LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-23-2003, 09:02 PM   #1
oracsol
LQ Newbie
 
Registered: Sep 2003
Posts: 7

Rep: Reputation: 0
Question proper secure passwords


How do I go about enforcing rules on users such that they must choose at least one number and one special character in their choice of passwords on RedHat 9? Ideally I like to make these changes and also have the passwords expire in 30 days and the server must retain the last 3 passwords in an exclusion list. Note, the server has been setup and now I want to implement this change.
Thanks in advance
 
Old 10-23-2003, 09:56 PM   #2
wapcaplet
Guru
 
Registered: Feb 2003
Location: Colorado Springs, CO
Distribution: Gentoo
Posts: 2,018

Rep: Reputation: 48
I haven't done much in this area, so I don't know much about what's available for enforcing strong passwords. I did find an article about password security on Redhat's site which gives some suggestions, though. There are some password-cracking programs you can run to test for weak passwords.

Also, the passwd utility does allow you to enforce password aging, which makes users change their passwords periodically. You can set them to expire with whatever lifetime you like. passwd will warn users if their password is too short or doesn't contain numerals/punctuation, but I don't think it'll actually force them to use a secure password.

Sorry I can't be of more help.
 
Old 10-26-2003, 06:13 AM   #3
MsMittens
Member
 
Registered: Oct 2003
Location: Canada
Distribution: depends on the mood -- these days.. Slack!
Posts: 44

Rep: Reputation: 15
You should be able to modify your pam/passwd file to help enforce strong passwords. The following article should give you some insights (here's the Google cached version if you don't want to join). The pam module pam_passwd+ might be something to investigate as well.

Hope this helps.

Last edited by MsMittens; 10-26-2003 at 06:15 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
secure passwords HELP!!! mlu Linux - Security 2 04-28-2005 08:10 AM
Sync MySQL passwords with local account passwords? turbine216 Linux - Software 2 02-18-2005 03:15 AM
Completely uninstalling MySQL and its passwords passwords...how? I locked myself out! Baix Linux - Newbie 2 01-30-2005 04:10 PM
Secure email (SSL vs. secure authentication) jrdioko Linux - Newbie 2 11-28-2004 01:39 PM
Is there a way to sync Samba passwords with linux user passwords MarleyGPN Linux - Networking 2 09-09-2003 10:59 AM


All times are GMT -5. The time now is 04:52 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration