Bug 64692 - No ability to set permanent password quality policy
No ability to set permanent password quality policy
Status: CLOSED RAWHIDE
Product: Red Hat Linux
Classification: Retired
Component: authconfig (Show other bugs)
9
i386 Linux
medium Severity medium
: ---
: ---
Assigned To: Tomas Mraz
Aaron Brown
: FutureFeature
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2002-05-09 14:44 EDT by Chris Ricker
Modified: 2007-04-18 12:42 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2004-10-21 10:15:57 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Chris Ricker 2002-05-09 14:44:32 EDT
pam_cracklib can be used to set system policies regarding password strength in
various ways (complexity of password, dis-similarity of password to old passwds,
etc.).

Unfortunately, pam_cracklib is used only in system-auth, which is generated by
authconfig.  As an admin, I can set up system policies in system-auth, but the
next time authconfig is run those modifications will be lost.

Moving pam_cracklib to a non-autogenerated configuration file will allow
administrators to actually configure system policies....

I notice that there's a similar bug requesting that some policy information be
added to authconfig.  That might be another solution, but it would probably wind
up being less flexible (that request only wanted passwd length stuff, for
example, added).
Comment 1 Chris Ricker 2003-02-20 00:23:42 EST
Any chance of (ab)using the /etc/libuser.conf file to do this sort of thing?
Comment 2 Tomas Mraz 2004-10-21 10:15:57 EDT
This works well with current authconfig package. It preserves all
options of pam_cracklib.so when rewriting system-auth file.

Note You need to log in before you can comment on or make changes to this bug.