From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Date: Tue, 3 Jul 2007 11:26:41 +0400 From: Pavlov Konstantin To: sysadmins@lists.altlinux.org Message-ID: <20070703072641.GA10618@cryo.net.ru> References: <200707030905.47011.ashen@nsrz.ru> <200707031120.49193.aakarpov@gmail.com> <200707030927.02729.ashen@nsrz.ru> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="qcHopEYAB45HaUaB" Content-Disposition: inline In-Reply-To: <200707030927.02729.ashen@nsrz.ru> X-Operating-System: ALT Linux Sisyphus (20070101) User-Agent: Mutt/1.5.14 (2007-02-12) Subject: Re: [Sysadmins] =?koi8-r?b?xMzJzsEgySDXycQg0MHSz8zRINDPzNjaz9fB1MXM?= =?koi8-r?b?0Q==?= X-BeenThere: sysadmins@lists.altlinux.org X-Mailman-Version: 2.1.9rc1 Precedence: list Reply-To: ALT Linux sysadmin discuss List-Id: ALT Linux sysadmin discuss List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Jul 2007 07:30:27 -0000 Archived-At: List-Archive: --qcHopEYAB45HaUaB Content-Type: multipart/mixed; boundary="VbJkn9YxBvnuCH5J" Content-Disposition: inline --VbJkn9YxBvnuCH5J Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Jul 03, 2007 at 09:27:02AM +0400, =FB=C5=CE=C3=C5=D7 =E1=CC=C5=CB= =D3=C5=CA =F7=CC=C1=C4=C9=CD=C9=D2=CF=D7=C9=DE wrote: > =F7 =D3=CF=CF=C2=DD=C5=CE=C9=C9 =CF=D4 Tuesday 03 July 2007 09:20:35 Alex= Karpov =CE=C1=D0=C9=D3=C1=CC(=C1): > > =F7 =D3=CF=CF=C2=DD=C5=CE=C9=C9 =CF=D4 Tuesday 03 July 2007 11:05:46 = =FB=C5=CE=C3=C5=D7 =E1=CC=C5=CB=D3=C5=CA =F7=CC=C1=C4=C9=CD=C9=D2=CF=D7=C9= =DE > > > > =CE=C1=D0=C9=D3=C1=CC(=C1): > > > =F0=D2=C9=D7=C5=D4 =D7=D3=C5=CD! > > > =F4=C5=CB=D5=DD=C9=CA =D3=C9=DA=C9=C6. > > > =EE=C5 =CD=CF=C7=D5 =D3=CD=C5=CE=C9=D4=D8 =D0=C1=D2=CF=CC=D8 =D0=CF= =CC=D8=DA=CF=D7=C1=D4=C5=CC=C0. =F3=C9=D3=D4=C5=CD=C1 =C7=CF=D7=CF=D2=C9=D4= =CC=C9=C2=CF =D0=C1=D2=CF=CC=D8 > > > =CB=CF=D2=CF=D4=CB=C9=CA, =CC=C9=C2=CF not enough different character= s or classes for this > > > length. > > > > > > =F4=C1=CB =CB=C1=CB=CF=CA =D7=C9=C4 =D0=C1=CC=CF=D1 =D3=C5=CA=DE=C1= =D3 =C4=CF=CC=D6=C5=CE =C2=D9=D4=D8? > > > > =F4=C5=D0=C5=D2=D8 =C4=C1=D6=C5 =D2=D5=D4 =CE=C5 =CD=CF=D6=C5=D4 =D0=CF= =D3=D4=C1=D7=C9=D4=D8 "=D3=CC=C1=C2=D9=CA" =D0=C1=D2=CF=CC=D8. =F4=C1=CB = =DE=D4=CF - =D3=D4=D2=CF=C7=CF =D0=CF > > =CE=C1=D0=C9=D3=C1=CE=CE=CF=CD=D5, =C4=CC=C9=CE=C1 =CE=C5 =CD=C5=CE=C5= =C5 6 =D3=C9=CD=D7=CF=CC=CF=D7, =D3=C9=CD=D7=CF=CC=D9 =C4=CF=CC=D6=CE=D9 = =C2=D9=D4=D8 =D3=D5=DD=C5=D3=D4=D7=C5=CE=CE=CF > > =D2=C1=DA=CC=C9=DE=CE=D9=CD=C9 (=D2=C1=DA=CE=D9=CA =D2=C5=C7=C9=D3=D4= =D2 =C2=D5=CB=D7, =C3=C9=C6=D2=D9, =DA=CE=C1=CB=C9 =D0=D2=C5=D0=C9=CE=C1=CE= =C9=D1 =D7 =DE=C1=D3=D4=CE=CF=D3=D4=C9). >=20 > =F5=C7=D5. =E1 =C7=C4=C5 =CD=C5=CE=D1=C5=D4=D3=D1 =D0=CF=CC=C9=D4=C9=CB= =C1 =C2=C5=DA=CF=D0=C1=D3=D4=CE=CF=D3=D4=C9? =FE=D4=CF =D4=CF =CD=CE=C5 =CE= =C5 =CE=D2=C1=D7=C9=D4=D3=D1=20 > =DC=D4=CF=D4 "=D0=C1=D2=CF=CE=CF=C9=C4=C1=CC=D8=CE=D9=CA" =D5=D2=CF=D7=C5= =CE=D8 =C2=C5=DA=CF=D0=C1=D3=D4=CE=CF=D3=D4=C9 ... =D0=CF=CC=CF=D6=C9 =D0=D2=C9=C1=D4=D4=C1=DE=C5=CE=CE=CF=C5 =D7 /etc/control= =2Ed/facilities/ =CE=D5 =C9 control passwdqc, =C8=CF=D4=D1 =D5 =D4=C5=C2=D1 =CD=CF=D6=C5=D4 = =C2=D9=D4=D8 =C5=DD=C5 =D7 /etc/pam.d/system-auth =D3=D4=CF=D1=D4=D8 enforce=3Deveryone: [root@cryo pam.d]# fgrep passwdqc -R . =2E/system-auth-local.rpmnew:password required pam_passwdqc.so config=3D/etc/passwdqc.conf =2E/system-auth:password required pam_passwdqc.so min=3Ddisabled,24,12,8,7 max=3D40 passphrase=3D3 match=3D4 similar=3Ddeny random=3D42 enforce=3Duser= s retry=3D3 =2E/system-auth-local:password required pam_passwdqc.so min=3Ddisabled,24,12,8,7 max=3D40 passphrase=3D3 match=3D4 similar=3Ddeny r= andom=3D42 enforce=3Dusers retry=3D3 =2E/system-auth-ldap:password required pam_passwdqc.so config=3D/etc/passwdqc.conf [root@cryo pam.d]# --=20 > =F7 =ED2.4 =DC=D4=C9 =CD=C1=CE=CE=D9 =D7 man-pages-POSIX-1.0-alt2.noarch.= rpm :) manna-pages, =C7=CF=D7=CF=D2=C9=DB=D8? :) -- mike in community@ --VbJkn9YxBvnuCH5J Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename=passwdqc #!/bin/sh . /etc/control.d/functions CONFIG=/etc/passwdqc.conf new_subst everyone \ '^enforce=everyone$' \ 's,^enforce=users$,enforce=everyone,' new_subst users \ '^enforce=users$' \ 's,^enforce=everyone$,enforce=users,' new_help users 'Allow users to have weak password' new_help everyone 'Do not allow users to have weak password' new_summary 'Weak user passwords' control_subst "$CONFIG" "$*" --VbJkn9YxBvnuCH5J-- --qcHopEYAB45HaUaB Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQFGifotR0cP4/qrkIQRAsHMAJ92lyREH2e8I71DF9q31/OggdIj2wCgkkqt WtG/UThq62Lmaq7wyaRK44Y= =1vxO -----END PGP SIGNATURE----- --qcHopEYAB45HaUaB--