On Wed, 2003-12-24 at 22:01, Andrew Bartlett wrote:
> On Fri, 2003-12-12 at 21:23, Todd O'Bryan wrote:
> > Does anyone know of an add-on you can use with a Windows domain to
> > check the security of the password before it allows a change? With a
> > terminal server system I had, the server compl
On Fri, 2003-12-12 at 21:23, Todd O'Bryan wrote:
> Does anyone know of an add-on you can use with a Windows domain to
> check the security of the password before it allows a change? With a
> terminal server system I had, the server complained if the password was
> too close to a dictionary word,
On Thu, 2003-12-11 at 00:28, Ross McInnes (Systems) wrote:
> Recently we were audited and as part of that they looked at our systems
> and policies etc and produced a report.
>
> As part of that report they mentioned about forcing users to change thier
> passwords every 90 days or so.
Samba 3.
On Fri, 12 Dec 2003, Todd O'Bryan wrote:
> Does anyone know of an add-on you can use with a Windows domain to
> check the security of the password before it allows a change? With a
> terminal server system I had, the server complained if the password was
> too close to a dictionary word, too close
Does anyone know of an add-on you can use with a Windows domain to
check the security of the password before it allows a change? With a
terminal server system I had, the server complained if the password was
too close to a dictionary word, too close to the student login, 7
digits (i.e., looked
i totally agree. unfortunatly my user base is mostly 16-18 year olds.
getting them to put anything other than thier football team, phone number
or boyfriend/girlfriend's name is quite a task in it self.
Many Thanks
Ross McInnes
On Wed, 10 Dec 2003, Todd O'Bryan wrote:
> What's the latest rese
Hello,
This is great information. I have been using tbdsam as a backend and I
have been unable to get the pdbedit -P "bad lockout attempt" -C XXX to be
enforced. When I set the attribute it seems that I can try to login as
many times as I want. Any help out there?
> Hi,
>
> Samba-3 with LDAP
Hi,
Samba-3 with LDAP backend is capable in this. I'm using it and it works.
All you have to do, is to use LDAP and set proper account policies:
$ pdbedit -P "bad lockout attempt" -C 5
(after 5 wrong password, user account will be locked out - samba sets
password hashes to ***NOPASSWORD*** and us
What's the latest research on this? I heard it's better to make users
pick something secure and stick with it, because if you force people to
change, they're likely to pick less secure passwords and do stupid
things with them, like write them down or something. Changing every 3
months doesn't s
Recently we were audited and as part of that they looked at our systems
and policies etc and produced a report.
As part of that report they mentioned about forcing users to change thier
passwords every 90 days or so.
They also mentioned about disabling accounts after 3 login attempts.
Im pret
10 matches
Mail list logo
