Login or Register to Ask a Question and Join Our Community


UNIX for Advanced & Expert Users

Passphrase Complexity

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users Passphrase Complexity
# 1  
Old 02-16-2011
Passphrase Complexity
Hi,

How to configure minimum passphrase (Not UNIX password) requirements on any UNIX box?

Passphrase - the one user enteres while generating pub/pvt keys using ssh-keygen.

Thanks!
Reddy
# 2  
Old 02-16-2011
I assume you mean ssh-keygen -N newpassphrase or the passphrase that is asked for during keygen.. There is nothing in the docset on this. The reason is that the passphrase is optional. You can hit return twice (NULL passphrase) to off the passphrase completely.
# 3  
Old 02-16-2011
Thank you jim for the reply.

I know its optional and need to be kept null for passwordless ssh. But our company security policies force IT team to set it. Now we need to set minimum requirements for this passphrase as 8 char length.

regards,
reddy
# 4  
Old 02-16-2011
You cannot let users access the ssh-keygen image directly.

Put ssh-keygen in a special directory, then create a shell script with the same name in place of ssh-keygen that intercepts passpahrase changes and enforces the IT security ruleset. It then calls ssh-keygen correctly when needed.
Login or Register to Ask a Question

Previous Thread | Next Thread

3 More Discussions You Might Find Interesting

1. SuSE

Setting password complexity

Hi, I am setting password complexity in SLES 11. I am able to do most of things pam-config -d --pwcheck pam-config -a --cracklib pam-config -a --cracklib-minlen=8 pam-config -a --cracklib-dcredit=-1 pam-config -a --cracklib-ocredit=-1 pam-config -a --pwhistory pam-config -a... (1 Reply)
Discussion started by: solaris_1977
1 Replies

2. Cybersecurity

Computational complexity

This is a general question about the practical use of computational complexity in security. Wikipedia has a good article about the theoretical background of computational complexity. In the course of conversation with colleagues, a topic that is brought up occassionally is the security of any... (2 Replies)
Discussion started by: gratuitous_arp
2 Replies

3. Solaris

password complexity check

Hi, I am looking for a simple way to : - force the user to change his password following the first connexion - check the complexity of a password (password should has a least 8 characters with 1 special char and 1 alpha...). Thinks for your help (1 Reply)
Discussion started by: dbsora
1 Replies
Login or Register to Ask a Question