Red Hat Bugzilla – Bug 848429
Option to prevent quality checks for non-local users
Last modified: 2013-09-27 05:22:16 EDT
Tomas and I discussed today a way to prevent pam_pwquality from standing on the toes of directory/realm/domain policy when non-local users change their own passwords.
This was discussed a bit in bug #815405, but we came up with a way that should be acceptable to implement.
Created attachment 604635 [details]
Add local_users_only option
This patch adds a local_users_only option.
When this option is set pam_pwquality checks whether the user shows up in the results of fgetpwent_r(). If the user does not show up there, then the passwords and updates the various authtoks, but does not check the quality of the password.
libpwquality-1.2.0-1.fc18 has been submitted as an update for Fedora 18.
* should fix your issue,
* was pushed to the Fedora 18 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing libpwquality-1.2.0-1.fc18'
as soon as you are able to.
Please go to the following url:
then log in and leave karma (feedback).
libpwquality-1.2.0-1.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.