I assume you mean ssh-keygen -N newpassphrase or the passphrase that is asked for during keygen.. There is nothing in the docset on this. The reason is that the passphrase is optional. You can hit return twice (NULL passphrase) to off the passphrase completely.
I know its optional and need to be kept null for passwordless ssh. But our company security policies force IT team to set it. Now we need to set minimum requirements for this passphrase as 8 char length.
You cannot let users access the ssh-keygen image directly.
Put ssh-keygen in a special directory, then create a shell script with the same name in place of ssh-keygen that intercepts passpahrase changes and enforces the IT security ruleset. It then calls ssh-keygen correctly when needed.
I am setting password complexity in SLES 11. I am able to do most of things
pam-config -d --pwcheck
pam-config -a --cracklib
pam-config -a --cracklib-minlen=8
pam-config -a --cracklib-dcredit=-1
pam-config -a --cracklib-ocredit=-1
pam-config -a --pwhistory
pam-config -a... (1 Reply)
This is a general question about the practical use of computational complexity in security. Wikipedia has a good article about the theoretical background of computational complexity. In the course of conversation with colleagues, a topic that is brought up occassionally is the security of any... (2 Replies)
I am looking for a simple way to :
- force the user to change his password following the first connexion
- check the complexity of a password (password should has a least 8 characters with 1 special char and 1 alpha...).
Thinks for your help (1 Reply)