login.conf issue
I am using login.conf to set a minimul password length in the default class and root class, after adding :minpasswordlen=8: to default and :minpasswordlen=11: to root and then running $ cap_mkdb /etc/login.conf I can still use a password of 1 character. This is on FreeBSD 5.1-RELEASE i386. I have tried this on a 4.8 system and this works fine, did I miss something in the release notes? Below are the steps I took for 5.1 $ vim /etc/login.conf default:\ :passwd_format=md5:\ :copyright=/etc/COPYRIGHT:\ :welcome=/etc/motd:\ :setenv=MAIL=/var/mail/$,BLOCKSIZE=K,FTP_PASSIVE_MODE=YES:\ :path=/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/local/bin /usr/X11R6/bin ~/bin:\ :nologin=/var/run/nologin:\ :cputime=unlimited:\ :datasize=unlimited:\ :stacksize=unlimited:\ :memorylocked=unlimited:\ :memoryuse=unlimited:\ :filesize=unlimited:\ :coredumpsize=unlimited:\ :openfiles=unlimited:\ :maxproc=unlimited:\ :sbsize=unlimited:\ :vmemoryuse=unlimited:\ :priority=0:\ :ignoretime@:\ :umask=022:\ :minpasswordlen=8: root:\ :ignorenologin:\ :minpasswordlen=8:\ :tc=default: $ cap_mkdb /etc/login.conf $ passwd -l test Changing local password for test. New password: a Retype new password: a passwd: updating the database... passwd: done $ On 4.8, edits to login.conf are the same, and I get this for passwd: $ passwd -l test Changing local password for mcarlson. New password: a Please enter a password at least 8 characters in length New password: ^c Password unchanged. passwd: /etc/master.passwd: unchanged $ Thanks Mike Carlson [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-current To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: login.conf issue
Michael Carlson wrote: I am using login.conf to set a minimul password length in the default class and root class, after adding :minpasswordlen=8: to default and :minpasswordlen=11: to root and then running $ cap_mkdb /etc/login.conf I can still use a password of 1 character. This is on FreeBSD 5.1-RELEASE i386. I have tried this on a 4.8 system and this works fine, did I miss something in the release notes? login.conf(5): The minpasswordlen and minpasswordcase facilities for enforcing restric- tions on password quality, which used to be supported by login.conf, have been superseded by the pam_passwdqc(8) PAM module. -- Daniel C. Sobral (8-DCS) Gerencia de Operacoes Divisao de Comunicacao de Dados Coordenacao de Seguranca VIVO Centro Oeste Norte Fones: 55-61-313-7654/Cel: 55-61-9618-0904 E-mail: [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] Outros: [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] Bradley's Bromide: If computers get too powerful, we can organize them into a committee -- that will do them in. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-current To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: login.conf issue
Michael Carlson wrote: I am using login.conf to set a minimul password length in the default class and root class, after adding :minpasswordlen=8: to default and :minpasswordlen=11: to root and then running $ cap_mkdb /etc/login.conf I can still use a password of 1 character. This is on FreeBSD 5.1-RELEASE i386. I have tried this on a 4.8 system and this works fine, did I miss something in the release notes? I might also add that the same man page says this about these two capabilities: RESERVED CAPABILITIES The following capabilities are reserved for the purposes indicated and may be supported by third-party software. They are not implemented in the base system. -- Daniel C. Sobral (8-DCS) Gerencia de Operacoes Divisao de Comunicacao de Dados Coordenacao de Seguranca VIVO Centro Oeste Norte Fones: 55-61-313-7654/Cel: 55-61-9618-0904 E-mail: [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] Outros: [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] Bradley's Bromide: If computers get too powerful, we can organize them into a committee -- that will do them in. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-current To unsubscribe, send any mail to [EMAIL PROTECTED]
