hardenedbsd/HardenedBSD
1
0
Fork 0
mirror of https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git synced 2024-11-15 14:56:13 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
0b0ecb56f2
HardenedBSD/contrib/pam_modules/pam_passwdqc/PLATFORMS
Dag-Erling Smørgrav 0b0ecb56f2 Vendor import of Solar Designer's pam_passwdqc module.
2002-04-04 15:50:47 +00:00

28 lines
905 B
Plaintext
Raw Blame History

Please see the README for instructions common to all platforms and
descriptions of the options mentioned here.
Linux.
Most modern Linux distributions use Linux-PAM with a password changing
module which understands "use_authtok". Thus, you may choose which
module prompts for the old password, things should work either way.
FreeBSD.
Currently, FreeBSD doesn't use PAM for password changing. This means
you won't be able to use pam_passwdqc with FreeBSD.
Solaris.
pam_passwdqc has to ask for the old password during the update phase.
Use "ask_oldauthtok=update check_oldauthtok" with pam_passwdqc and
"use_first_pass" with pam_unix.
You will likely also need to set "max=8" in order to actually enforce
not-so-weak passwords with the obsolete "traditional" crypt(3) hashes
that most Solaris systems use. Of course this way you only get about
one third of the functionality of pam_passwdqc.
Reference in New Issue View Git Blame Copy Permalink