more /etc/pam.conf
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
Code:
more /etc/shadow
test123:$5$d0RtrmM4$dKEvxqLSUDvMpjVy5l8nrg/42cBdqzlsff3lGlaYte9:17052:7:28:7:::
Still I am able to set even single digit as password to any account, even though PASSLENGTH is configured as 8.
Code:
root@test:~# passwd test123
New Password:
Re-enter new Password:
passwd: password successfully changed for test123
root@test:~#
Can anybody with experience on this help in figuring out the issue. Where else do I need to do configuration to have /etc/default/passwd related constraints effective.
G'day,
I've a solaris 9 box that I want to configure so that users can send out mails to internet. How can I do it? Can someone pls list me the steps or direct me to a detailed website.
Thanks in advance. (1 Reply)
Hi,
I am trying to configure an ip address, netmask, and default gateway on my solaris machine. For example, in Linux I would do the following command:
#ifconfig eth0 xx.xx.xx.xx netmask 255.0.0.0
#add route or route add default xxx.xxx.xxx.xxx
In Solaris 10, I believe the commands are... (7 Replies)
Hey. i have been trying to configure the on board Ethernet in My Sparcstation 5, i have spent a lot of time on the ifconfig man pages. but it could really be nice with some pro. help. i don't think the interface is running . i don't know what name the interface have, le0 eth0 et0, it just says no... (4 Replies)
Hey. how do i configure the Lance Ethernet in my SS5
i must use DHCP to get Internet access. i have tried sys-unconfig and ifconfig le0 plumb and dhcp. but no cigar. how do i configure ?
i have had some problems with the /etc/hosts dir. it says it dosent exist and when i try to create it it says... (1 Reply)
HI All
I need help to understand how the ldap works in Solaris 9 & Solaris 10.
Kindly provide me some helpful commands related to LDAP
Regards
Jagan (2 Replies)
I just wanted to know if I can configure samba on solaris 10 x-86. I was just wondering if the samba is in-built software gets shipped with Operating System CD.
I have searched a lot on many sites and forums but still not getting any way to make it. It would be really appreciable if some can... (1 Reply)
I have tried and tried again, to get an HP 4700dn laserjet printer to work on a GI Sun Solaris BOX. I have gone through and added the Printer server and IP to the Host file in the /etc folder and also added the printer ip and printer name itself. when I go to print something the printer shows up in... (7 Replies)
Hi,
I have a Solaris server, This server has 4 ethernet ports, I need the SMTP service out a Specific IP of these four, What I have to do to set it up?
Regards
Enrique (1 Reply)
Discussion started by: Enrique Suarez
1 Replies
LEARN ABOUT PHP
pam_authtok_check
pam_authtok_check(5) Standards, Environments, and Macros pam_authtok_check(5)NAME
pam_authtok_check - authentication and password management module
SYNOPSIS
pam_authtok_check.so.1
DESCRIPTION
pam_authtok_check provides functionality to the Password Management stack. The implementation of pam_sm_chauthtok() performs a number of
checks on the construction of the newly entered password. pam_sm_chauthtok() is invoked twice by the PAM framework, once with flags set to
PAM_PRELIM_CHECK, and once with flags set to PAM_UPDATE_AUTHTOK. This module only performs its checks during the first invocation. This
module expects the current authentication token in the PAM_OLDAUTHTOK item, the new (to be checked) password in the PAM_AUTHTOK item, and
the login name in the PAM_USER item. The checks performed by this module are:
length The password length should not be less that the minimum specified in /etc/default/passwd.
circular shift The password should not be a circular shift of the login name. This check may be disabled in /etc/default/passwd.
complexity The password should contain at least the minimum number of characters described by the parameters MINALPHA, MINNONALPHA,
MINDIGIT, and MINSPECIAL. Note that MINNONALPHA describes the same character classes as MINDIGIT and MINSPECIAL combined;
therefore the user cannot specify both MINNONALPHA and MINSPECIAL (or MINDIGIT). The user must choose which of the two
options to use. Furthermore, the WHITESPACE parameter determines whether whitespace characters are allowed. If unspecified
MINALPHA is 2, MINNONALPHA is 1 and WHITESPACE is yes
variation The old and new passwords must differ by at least the MINDIFF value specified in /etc/default/passwd. If unspecified, the
default is 3. For accounts in name services which support password history checking, if prior history is defined, the new
password must not match the prior passwords.
dictionary checkThe password must not be based on a dictionary word. The list of words to be used for the site's dictionary can be speci-
fied with DICTIONLIST. It should contain a comma-separated list of filenames, one word per line. The database that is cre-
ated from these files is stored in the directory named by DICTIONDBDIR (defaults to /var/passwd). See mkpwdict(1M) for
information on pre-generating the database. If neither DICTIONLIST nor DICTIONDBDIR is specified, no dictionary check is
made.
upper/lower caseThe password must contain at least the minimum of upper- and lower-case letters specified by the MINUPPER and MINLOWER val-
ues in /etc/default/passwd. If unspecified, the defaults are 0.
maximum repeats The password must not contain more consecutively repeating characters than specified by the MAXREPEATS value in
/etc/default/passwd. If unspecified, no repeat character check is made.
The following option may be passed to the module:
debug syslog(3C) debugging information at the LOG_DEBUG level
RETURN VALUES
If the password in PAM_AUTHTOK passes all tests, PAM_SUCCESS is returned. If any of the tests fail, PAM_AUTHTOK_ERR is returned.
FILES
/etc/default/passwd See passwd(1) for a description of the contents.
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Interface Stability |Evolving |
+-----------------------------+-----------------------------+
|MT Level |MT-Safe with exceptions |
+-----------------------------+-----------------------------+
SEE ALSO passwd(1), pam(3PAM), mkpwdict(1M), pam_chauthtok(3PAM), syslog(3C), libpam(3LIB), pam.conf(4), passwd(4), shadow(4), attributes(5),
pam_authtok_get(5), pam_authtok_store(5), pam_dhkeys(5), pam_passwd_auth(5), pam_unix_account(5), pam_unix_auth(5), pam_unix_session(5)NOTES
The interfaces in libpam(3LIB) are MT-Safe only if each thread within the multi-threaded application uses its own PAM handle.
The pam_unix(5) module is no longer supported. Similar functionality is provided by pam_authtok_check(5), pam_authtok_get(5), pam_auth-
tok_store(5), pam_dhkeys(5), pam_passwd_auth(5), pam_unix_account(5), pam_unix_auth(5), and pam_unix_session(5).
SunOS 5.10 4 Jun 2004 pam_authtok_check(5)
09-08-2016
