I went through the login.conf man page. Everything there works quite nice (Force change, force upper/lower case etc.), except that I cannot figure out how to stop the user from re-using last month's password. ie. How can I make BSD remeber the passwords that was used during the last 6 changes, and stop the user from using them again. I also need a bit more control on the password side. Our company policy specifies that the password meet at least 3 of the following 4 criteria:
lowercase
uppercase
numbers
punctuation (!@#$%^&*()+":>?<)
BSD enforces (as far as I can see) only 2 of the four. Any suggestions / sample pam.conf entries will be apreciated.
Regards.
Niekie
-----Original Message-----
From: Sean Winn [SMTP:[EMAIL PROTECTED]]
Sent: Monday, February 05, 2001 9:33 AM
To: Niekie Myburgh (QData)
Subject: Re: passwd, npasswd, PAM and password ageing
At 08:19 5/02/01 +0200, you wrote:
>Can anyone tell me how to get password ageing working on FreeBSD 4.2. I
>have to stop users from re-using their passwords. On Linux, pam_cracklib
>and pam_passwdqc does the trick, but on BSD, they are just being
>ignored. I tried npassword, but that was made for Solaris & other
>operating systems, and does not compile (easily) on BSD. If you does get
>it to compile, it does the core dump thing. It also rely on shadow
>passwords, and other things that does not seem to be present on
>FreeBSD. I would appreciate any help I can get in this regard.
Shadow passwords are standard. They're in /etc/master.passwd
login.conf (man 5 login.conf) controls password aging and other facilities.
>Thanx.
>
>Niekie