I'm not an expert in this field so it's better if you wait for somebody with the proper knowledge to answer your question.
My two cents: take into account that different backends where you store users' info may implement some of the functionality you require and you are not specifying where you plan to manage such information. I mean, are you using local files (/etc/passwd, etc.), NIS/NIS+ or LDAP? In my site, we're using an LDAP implementation (Sun's Java Directory Server) and it provides us with some of the functionality you're planning to implement, such as password complexity requirements.
Waiting for somebody else to answer your question, could you please detail the information you need?
As far as it concerns the TIMEOUT value, it's just not what you mean. The TIMEOUT is:
Quote:
Number of seconds allowed for logging in before a timeout occurs.
|
Bye,
Enrico.