LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 11-16-2009, 09:36 AM   #1
elainelaw
Member
 
Registered: Jan 2008
Posts: 258

Rep: Reputation: 30
Password


The below is the current password policy , can advise .

1. the user can re-try the password in unlimied times , how can I control if the user login to the server with wrong password over 3 times , then lock the a/c ?

2. in current configuration , the password is case sensitive , how to cancel it ?

3. in current configuation , the password is not allow dictionary word , how to cancel it ? that mean user can use dictionary word as the passwod.



Thx in advance.
 
Old 11-16-2009, 09:56 AM   #2
anomie
Senior Member
 
Registered: Nov 2004
Location: Texas
Distribution: RHEL, Scientific Linux, Debian, Fedora
Posts: 3,935
Blog Entries: 5

Rep: Reputation: Disabled
Point by point:
  1. Should be doable with pam_tally(8). Check its manpages and search LQ for examples / discussions.
  2. Probably by removing certain checks from your pam stack. Don't do that.
  3. Ditto. Don't do that.
 
Old 11-16-2009, 09:56 AM   #3
aus9
LQ Addict
 
Registered: Oct 2003
Location: Australia
Distribution: Mainly Debian based
Posts: 5,406

Rep: Reputation: Disabled
hi

this sounds like homework questions and include a trap.

I suggest you look first to see what your current security systems are. We can not tell you.

/etc/pam.d and /etc/security will be very useful to change where appropiate.

2) If you are interested in security and are not doing homework, forgive me.

Your (3) is dangerous....enough said or haven't you worked it out?

(2) increases the chance of brute attacks succeeding....depending on kb you have 26 characters that are letters and caps give you another 26....so a 52 factorial algorithm...ignoring special characters that can also be used and numbers
 
Old 11-17-2009, 12:35 AM   #4
elainelaw
Member
 
Registered: Jan 2008
Posts: 258

Original Poster
Rep: Reputation: 30
for the point , please ignore the security issue , can advise is it possible to do that ? thx
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
GNOME: Gain privileges using current user's password instead of root's password maxkukartsev Fedora 5 02-10-2012 10:46 AM
simpler GUI password for Administrative tasks while retaining complex user password? workforfood Ubuntu 1 08-29-2009 07:48 AM
How to retrieve( or reset) root password in Mandrake Linux, as I forgot my password? Reghunath Linux - Software 4 05-08-2008 05:11 AM
How can I change e-mail password(or linux account password) with php in website?? yusuf Programming 1 05-28-2004 10:39 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 10:14 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration