Description of problem: A customer came to us with the following bug: on RHEL 6, if they told pam_pwhistory to remember the last five passwords, it would remember them. If they give the same instruction to the PAM module on RHEL 7.5, it remembers the last six passwords instead of five. Version-Release number of selected component (if applicable): * pam-1.1.8-22.el7.x86_64 How reproducible: I did not personally reproduce it, but the customer has indicated it's affecting multiple systems. Steps to Reproduce: 1. Enable pam_pwhistory 2. Set it to remember the last five passwords. 3. Change password five times. 4. Try using the original password again. Actual results: (per customer) pam_pwhistory remembers the last six passwords instead of the last five. Expected results: pam_pwhistory only recalls the last five passwords.
I tried reproducing the error in RHEL7 and it's working as expected. So, I'm wondering, maybe there was a problem in RHEL6 and it was fixed for RHEL7. Steps: 1- Set 6 different passwords for a user. 2- Change the password to the second one -> Fails because we are reusing a password. 3- Change the password to the first one -> Succeeds. Can you provide any additional information?
Did you try on 7.9 or 7.5?
I don't know the exact RHEL version but I know I was using pam-1.1.8-22