BAD PASSWORD: it is based on a dictionary word | Unix Linux Forums | Emergency UNIX and Linux Support

  Go Back    


Emergency UNIX and Linux Support Please post your urgent questions here for highest visibility. Posting a new thread to this forum requires Bits. We monitor this forum to help people with emergencies, but we do not guarantee response time or answers. This forum is "best effort" only. Members who reply to posts here receive a bonus of 1000 Bits per reply.

BAD PASSWORD: it is based on a dictionary word

Emergency UNIX and Linux Support


Closed Thread    
 
Thread Tools Search this Thread Display Modes
    #1  
Old 01-08-2013
Jcpratap Jcpratap is offline
Registered User
 
Join Date: Feb 2012
Last Activity: 20 October 2014, 9:23 AM EDT
Posts: 59
Thanks: 2
Thanked 3 Times in 3 Posts
BAD PASSWORD: it is based on a dictionary word

hi all,

i am trying to change the password of a user as the same is used in
various deployment scripts but when chnaging the passowrd to desired one by root user i am getting as below


Code:
Changing password for user tcms.
New UNIX password:
BAD PASSWORD: it is based on a dictionary word
Retype new UNIX password:
passwd: all authentication tokens updated successfully.

it is showing as all authentication tokens updated successfully but when i am using the password it is showin incorrect.

i want to use same paaswd even if its a weak passwd and i am changing it by root user , also machine is

Linux cbl00504dat01 2.6.18-238.el5 #1 SMP Tue Jan 4 15:41:11 EST 2011 x86_64 x86_64 x86_64 GNU/Linux

pls help with this urgently

---------- Post updated at 07:03 AM ---------- Previous update was at 06:51 AM ----------

i have removed and commented some lines in file
/etc/pam.d/system-auth
coomented first line and removed use_authtok from 2nd lines in below two lines

1 password requisite pam_cracklib.so try_first_pass retry=3
2 password sufficient pam_unix.so md5 shadow nullok try_first_pass use_authtok

after dis it is not giving BAD passwd error, but i am unable to login for that user even after changing the passwd
Sponsored Links
    #2  
Old 01-08-2013
DGPickett DGPickett is offline Forum Advisor  
Registered User
 
Join Date: Oct 2010
Last Activity: 31 October 2014, 5:47 PM EDT
Location: Southern NJ, USA (Nord)
Posts: 4,480
Thanks: 8
Thanked 549 Times in 526 Posts
In all computer stuff, you can pretty much do anything, but you must ask yourself: Should you?
Sponsored Links
    #3  
Old 01-08-2013
Corona688 Corona688 is offline Forum Staff  
Mead Rotor
 
Join Date: Aug 2005
Last Activity: 31 October 2014, 7:49 PM EDT
Location: Saskatchewan
Posts: 19,743
Thanks: 832
Thanked 3,375 Times in 3,162 Posts
It's interesting that it rejects that password because it is literally able to crack it in three tries, yes...
    #4  
Old 01-08-2013
DGPickett DGPickett is offline Forum Advisor  
Registered User
 
Join Date: Oct 2010
Last Activity: 31 October 2014, 5:47 PM EDT
Location: Southern NJ, USA (Nord)
Posts: 4,480
Thanks: 8
Thanked 549 Times in 526 Posts
'Root'?
Sponsored Links
    #5  
Old 01-09-2013
Jcpratap Jcpratap is offline
Registered User
 
Join Date: Feb 2012
Last Activity: 20 October 2014, 9:23 AM EDT
Posts: 59
Thanks: 2
Thanked 3 Times in 3 Posts
actually that user was locked that why it was showing incorrect password even after changing with root user. any ways i unlocked it with faillog command.
The Following User Says Thank You to Jcpratap For This Useful Post:
Corona688 (01-09-2013)
Sponsored Links
    #6  
Old 01-10-2013
DGPickett DGPickett is offline Forum Advisor  
Registered User
 
Join Date: Oct 2010
Last Activity: 31 October 2014, 5:47 PM EDT
Location: Southern NJ, USA (Nord)
Posts: 4,480
Thanks: 8
Thanked 549 Times in 526 Posts
If a password is hardcoded in, and probably should not age, then it should be a robust, random one.
Sponsored Links
    #7  
Old 01-10-2013
fpmurphy's Avatar
fpmurphy fpmurphy is offline Forum Staff  
who?
 
Join Date: Dec 2003
Last Activity: 30 October 2014, 11:10 PM EDT
Location: /dev/ph
Posts: 4,828
Thanks: 64
Thanked 431 Times in 399 Posts
You need to remove (or comment out) the pam_cracklib line in the appropriate PAM configuration file. This is probably /etc/pam.d/system-auth but I could be wrong as I am not sitting in front of a Red Hat system at the moment.
Sponsored Links
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
Expect scripting telnet stop on bad username or password leemalloy Shell Programming and Scripting 3 10-12-2012 10:38 PM
tcl/expect magic ssh dictionary password wakatana Shell Programming and Scripting 3 08-01-2012 11:07 AM
How to create java based dictionary for mobile using data in microsoft excel? Anna Hussie Programming 1 04-11-2011 04:27 PM
How to fetch rows based on line numbers or based on the beginning of a word? Muthuraj K Shell Programming and Scripting 18 02-02-2010 04:27 AM
Manipulating word based off of contents ryanfx Shell Programming and Scripting 8 11-19-2009 07:26 PM



All times are GMT -4. The time now is 08:26 PM.