Security :: Password Complexity With Pam_passwdqc.so?
Mar 25, 2009
we have a line in /etc/pam.d/system-auth-ac on RH 5.1:
password requisite pam_passwdqc.so min=disabled,disabled,disabled,disabled,8
I believe this should require new passwords to be 4 character classes only with minimum size =8 (uppercase, lowercase, digits, special chars) however running passwd also gives option of using word:word,word which only contains 2 of the required classes. Is there any way to fix this so only 4 character class passwords can be generated ?
View 4 Replies
ADVERTISEMENT
Aug 26, 2009
I want to change the password complexity how do i do this?
View 9 Replies
View Related
Apr 9, 2010
I must be losing it because I can't seem to find my answer on the google mechine. I need to enforce password complexity in ubuntu. I need min length, upper case, number and or special characters. I don't want to have to install pam_cracklib on all these boxes. I have looked at he common-password and it's not much.
View 2 Replies
View Related
Apr 30, 2009
I'm having no success getting password complexity to work with RH4/U5. Added/modified the following to /etc/pam.d/system-auth
password required /lib/security/$ISA/pam_passwdqc.so min=disabled,disabled,disabled,disabled,12
password sufficient /lib/security/$ISA/pam_unix.so nullok use_authtok md5 shadow nis remember=24
I have deployed complexity before on other releases w/o problems.This one is a NIS server, but I have other NIS servers working fine. I even tried copying system-auth from a RH4/U2 NIS server which performs complexity to the RH4/U5 system - no luck. When I attempt to change a user password from a user acct, get message that password must be at least 6 characters. The system-auth file I am using dictates 12 characters with 4 different character cases. /etc/login.defs also has minimum length set to 12 - no idea where the 6 character limit is coming from. I also tried using cracklib.so with minlen=12 , no luck there either.
View 2 Replies
View Related
Sep 16, 2010
I''m new to Debian 5 so please be gentle
When I use 'adduser' it states 'Enter the new password (minimum of 5, maximum of 8 characters)' - how can I enforce password complexity?
I would like to have a minimum of 10 characters and also have numbers, certain special characters etc.
View 3 Replies
View Related
Nov 30, 2009
I would like to ask how could I enforce "NT-style" password complexity, for instance, the new password must contain 2 lowercase characters, 2 digits and 1 non-alphabetic character set, on Samba PDC so that while some samba clients change their passwords from Windows XP workstations. I have configured check password script option on samba configuration file, but users could not change password from Windows XP workstations no matter how complicated password they use.
A dialog box said: The password supplied does not meet the minimum complexity requirements. Please select another password that meets all of the following criteria: is at least 5 characters; has not been used in the previous 0 passwords; does not contain your account or full name; contains at least three of the following four character groups:
English uppercase characters (A through Z);
English lowercase characters (a through z);
Numerals (0 through 9);
Non-alphabetic characters (such as !, $, #, %)
[code].....
View 3 Replies
View Related
Jun 14, 2011
everytime i try to vnc to my box, it pops up the keyring authentication, which is obviously a huge problem when logging in remotely.how do i change my keyring password to match my login password?
View 4 Replies
View Related
Oct 22, 2010
I know this has probably been asked too many times here but I need to secure my emails. Personal matters of course. But yeah. I use the program "Password and Encryption Keys" to generate a key to sign my emails with but I do not know what to do. To be blunt, I'm stupid when it comes to this. IF not, steps in creating a key? and giving it (my public key) to the significant other? Finding where both keys are? Implementing it into Thunderbird? If it helps any here's some extra information: Ubuntu distro: Ubuntu 10.04 Email client: Thunderbird
View 7 Replies
View Related
Jan 13, 2010
How can I force passwd to use a simple password?I want to change my passwd & delete passwd history (if stored).I plan on creating a Virtual Appliance that uses another password besides my testing password.
View 5 Replies
View Related
Oct 1, 2010
I have a database created by an older program (not Access) that I need to open and retrieve information for my business. The manufacturer put a password on there so that only it's program could open it. I do not use that program, but it has information I need. Is there a way to find that password or circumvent the password altogether?
View 1 Replies
View Related
Aug 3, 2010
I already posted a topic similar to this concerning the Desktop OS version, but this deals with the Netbook because unlike the Desktop, the Netbook is less cooperative. Allow me to elaborate: Today (or rather yesterday since it's not after midnight where I am), I changed my password because I was hopelessly confounded about how to get my Wireless Network card up and running after it had been installed and I was allowing my dad to use it. This issue has since been resolved, however...
When I chose my password during the original installation, there was no mention of it being "too simple." This is where the Desktop OS and the Netbook OS differ. The desktop will let me change it in the terminal without any errors. The Netbook will not. When I've attempted to revert it back to the original, it will not let me do so in the User Profile or in the Terminal. The Passwords and Encryption Keys application also does not appear to help.
So now even after I've changed it to a different "complicated" password I am still prompted to insert two different passwords since I changed my user password but I am unable to change the password I input during the installation. A bit screwy methinks. This is extremely important. I'd like to know how to change the original installation password.
If I can't change the main password on my laptop then this is a serious potential security breach just waiting to happen (especially since it's on a laptop and I will be hauling it around with me) and I will most likely install a different OS if this isn't resolved --- It would be very unfortunate since I spent the whole day fixing it and I really enjoy the interface. Luckily I can live with this on my Desktop since I'm not going to be hauling it around with me everywhere when the school year starts.
View 9 Replies
View Related
May 12, 2010
I'm looking for a script which is testing how complex an "added" string is, for example like the user is changing his password and check how complex it is, if it included letters (lower/upper case), numbers and other characters.Im doing this for password check, the user type's the password and must be 6 characters long, have upper case letters lets say and numbers and so on.If anyone knows where I could find some bash script which is doing this, it would be really cool.
View 2 Replies
View Related
Sep 11, 2010
I am looking for tools for static/dynamic code analysis for embedded Linux system development (both device driver and user space apps) with ARM-based processor. We use Eclipse IDE and C++ lanuage for development. Does anybody have recommendation for tools to analyze code complexity? The tools is better to support McCabe complexity metric, however, we may also consider others. Does anybody have recommendation for unit testing?
View 1 Replies
View Related
May 17, 2010
Is it possible to change the log in password? Someone set this up for me and the password is too simple.
View 5 Replies
View Related
Feb 9, 2010
Simply, the number of possible combinations of passwords increases as an exponent of the number of characters used and as a factor of the number of characters available for use.
26 potential characters for a 2 character password results in 26^2 possible password combinations. This means that each new character added would result in an "order of magnitude" increase in the difficulty of brute force attack.
Using a phrase, complete with punctuation and capitalization is the very best mnemonic device to remember a password. Consider this, how hard is it to remember; The quick brown fox jumped over the lazy dog.
Than it is to remember, l33tsp34kp@ssw0rd
If we pretend that both of these passphrases are generated from a character set consisting of 26 characters, the first would be one of a possible 15274273784216769021564085930704478424313742483024 510976. The second would be one of a possible 1133827315385150725554176.
In short, use a passphrase not a password, they are much MUCH more secure.
View 14 Replies
View Related
Jan 22, 2011
I tried the following instructions to set up "ssh without passwords". But this didn't work.Could someone please tell how to debug this.
View 11 Replies
View Related
Jan 4, 2010
I'm new to ubuntu. Now iam using Karmic Koala. I want to change my password. So i used,
system->Administration->users and groups to change my password . As i entered my new password and clicked on 'Change Password', It is saying, 'password changed'. But when I click the close button in the main users and groups window, it is asking for my password, and I am forced to enter my old password only.
After the window is closed, i logout to check whether my password is changed. But it is not. I have to enter my old password to login.
View 9 Replies
View Related
Jul 17, 2010
i set my pass on ubuntu 10.4 and it work so good on installing app but suddenly it stopped working i thought i would restart my pc i tried to inter my pass again ubuntu don't accept it although it's surely true
View 7 Replies
View Related
Aug 27, 2010
I had this great idea to try and change the UBUNTU password. So I took not so drastic effort..I went to System>Administration>Users and Groups. There I clicked on my login name.Clicked on Properties and used the Change Password Button to Change my login password. I did that. [I thought this is the way to change the login password]. After that as usual I tried to launch the Empathy! It started asking me about some Keyring password! I gave my new password and it worked. Now, the weirdness of the issue is that..
1)If I want to login to UBUNTU..I have to give the Old Password [The password which I gave when installing Ubuntu;as if the password change has not come into affect]
oO mount..I have to give old password
To update I have to give old password.
But!
2)To get my things done in Empathy..that is to get the Keyring Challenge done! I have to give the new password and old password does not work here.
I want to stop empathy from asking me about the KEYRING thing. Roll back the system to the previous state; before the password change thing. What exactly went wrong or right? and What is really happening to my system. I mean things are all normal, so far..but why the two passwords? I dont use any heavy things on my machine..just a bit of browsing and Empathy..thats all.and only the default applications are installed on my machine. I use Ubuntu Karmic 9.10.
View 4 Replies
View Related
Aug 30, 2010
I need to be able to capture a users password when they login. I am well aware of the security issues with this and I'm ok with this.
We run a call center and I am working on migrating from windows to Kubuntu for the callers. It's policy that all callers must report their password to me, so I already know of everyone's password. There has to be some variable/script that I can "hack" to get the password they typed in to the login screen.
What I'm trying to do is that when a user logs in in for the first time, their profile is automatically created and set up. Setting up network drives, email, pidgin (which the password is stored in plain text anyway, so forget about security on that one), web apps, etc.
Trying to find information on How to capture a users password and all have been responded with the usual lecture on why you shouldn't do this. So I've heard it all before and I know of the risks. Like I said, I already have the callers password on file. If I could capture it, I wouldn't have to manually setup each profile every time we get a new caller, which is often since turnover is quite high in call centers.
View 5 Replies
View Related
Nov 27, 2010
Is it best to do this via the terminal or gui interface? does this meanthat the home folder encryption password is the same as the old login password?
View 4 Replies
View Related
Dec 21, 2010
Every time I log in, I get the "password for keyring default" question two or three times, unless I enter it immediately as it pops up, sometimes even that doesn't prevent it from respawning. What could be causing this? I'm using Maverick.
P.S. Hmm, I don't think I'll be watching the lunar eclipse much now, the sky is covered with smoke, maybe it's lunar apocalypse.
View 3 Replies
View Related
May 15, 2010
when i would mount a drive (internal, external, ntfs) in 9.10 it would ask for the root password. now 10.04 doesn't do that. how can i go back to that scenario?
View 4 Replies
View Related
Jan 25, 2011
I have created 2 in Linux.One is admin and other is Guest.But I forgot my admin password.ow to retrieve or change the admin password?
View 6 Replies
View Related
Mar 9, 2011
I've setup .htpasswd and a .htaccess file.
The password is a0bc0def0g3
If i enter that password, it let's me in.
if i enter a0bc0def0g it also works. I've never seen this before and is totally weird.
View 3 Replies
View Related
Jan 18, 2010
I have a bash script that will unencrypt a file, use the unencrypted file for a very short time and then delete the unencrypted file. The problem is that my password is in clear text
[code]...
Obviously this isn't so secure, but I need the script to be non-interactive. How do I hash, encrypt or otherwise make secure the password for the openssl command? I know that the openssl can protect passwords, e.g.:
openssl passwd -crypt "password"
But can I use this protected password in my script?
View 3 Replies
View Related
Jan 20, 2011
Protect against root password change[Log in to get rid of this advertisement]I have recently had to force a change of the root password on a linux box I was running. It was a test system which I had not used in a while, so I forgot the root password (not so smart).Anyway, I found that it was amazingly easy to reset the root password. Here is a straight forward article on how to do it.URL...
My question is: how can you protect against this? I see this as a security hole.I understand that the user must have physical access to the computer, but if I want to lock the system down so you cannot easily enter single user mode or the root password cannot be changed.
View 1 Replies
View Related
May 9, 2011
I have a RHEL 5.5 system set up with two users in the sudoers file to run certain commands without a password prompt.I do not have "Defaults requiretty" in the sudoers file.However, for both users, when I issue: sudo -l, it prompts for a password and logs in /var/log/secure:sudo: userx: no tty present and no askpass program specified
View 2 Replies
View Related
Jan 26, 2011
We have a couple of clusters that are running Oracle. If you're familiar with Oracle you know that it basically has to be installed as root. Something I detest. anyway, when we are building out the box, we change the root pw and give it to the DBA team to do their installs and configs. When they are done, we change the root pw (and do not give it to them), and configure sudo to allow them the rights needed to manage Oracle and their databases.
Now however, we have a different situation. The DBAs need access to uninstall and reinstall components and make modifications on an ongoing basis. Since we only support OS and hardware, not app, they are requesting permanent root access. I promptly told them no, and the politics ensued. Their manager went to their director, who went to my director, and suddenly an exception is given for his good golfing buddy. So here I am, forced to turn lose DBAs on my clusters with full root access/pw. I need a way to allow specific users (or perhaps a specific user group) the ability to become root WITHOUT sharing the root pw with them.
View 3 Replies
View Related
Jun 1, 2010
I want to do setting in RHEL5 such that user should able to change his password only once in a day.I have changed the fourth field (i.e. minimum number of days to change) in in "/etc/shadow" file for "root" to "1". But its not working. I am able to change the password of "root" using "passwd" command.Any one can help me out on this issue
View 5 Replies
View Related
