https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991236#M124408 Please see this thread. <BR /><BR /><A href="http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x786f1cc6003bd6118fff0090279cd0f9,00.html" target="_blank">http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x786f1cc6003bd6118fff0090279cd0f9,00.html</A><BR /><BR />Hai Fri, 06 Jun 2003 16:37:05 GMT Hai Nguyen_1 2003-06-06T16:37:05Z https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991234#M124406 Hi, <BR />(Problem is same with Unix 10.20 and 11.0) I use root id. and my password has 10 digits. But I'm able to connect even thought I entered only 8 first digits??????<BR /><BR />Can I apply patch or do something to resolve it?<BR /><BR />Thank you<BR /> Fri, 06 Jun 2003 16:30:54 GMT https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991234#M124406 Sylvie Vezina 2003-06-06T16:30:54Z https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991235#M124407 Hi,<BR />Wait and see someone to confirm, but for a compatibility purpose - Only the 8 first characters are taken in account<BR />So all is normal <BR /><BR />All the best<BR />Victor Fri, 06 Jun 2003 16:33:44 GMT https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991235#M124407 Victor BERRIDGE 2003-06-06T16:33:44Z https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991236#M124408 Please see this thread. <BR /><BR /><A href="http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x786f1cc6003bd6118fff0090279cd0f9,00.html" target="_blank">http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x786f1cc6003bd6118fff0090279cd0f9,00.html</A><BR /><BR />Hai Fri, 06 Jun 2003 16:37:05 GMT https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991236#M124408 Hai Nguyen_1 2003-06-06T16:37:05Z https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991237#M124409 Hope this helps:<BR />How can the HP-UX system be configured in that way that users have to use a<BR />password with at least 8 characters?<BR />CONFIGURATION<BR />HP-UX 11.00<BR />PHCO_20334 or later installed<BR />RESOLUTION<BR />With patch PHCO_20334 there was a additional parameter introduced:<BR /><BR />MIN_PASSWORD_LENGTH<BR /><BR />This parameter can be changed in the /etc/default/security file.<BR /><BR />MIN_PASSWORD_LENGTH=8 means that users have to use a password with at least 8<BR />characters. This file can be created on all 11.00 systems not only on trusted<BR />systems. Within 11i the specific part of the manpage looks like this:<BR /><BR /> On an untrusted system, passwords of non-root users must have at<BR /> least six characters. On a trusted system, passwords of all<BR /> users must have at least six characters. This restriction on the<BR /> password length can be increased to a value larger than six.<BR /> Refer to the security(4) manual page for detailed information on<BR /> configurable parameters that affect the behavior of this command.<BR /> The parameter to select the minimum password length is<BR /><BR /> MIN_PASSWORD_LENGTH=N<BR /><BR /> This parameter controls the minimum length of new passwords.<BR /> It is not applicable to the root user on a untrusted system.<BR /><BR /> For untrusted systems N can be any value from 6 to 8.<BR /> For trusted systems N can be any value from 6 to 80.<BR /><BR /> Default value: MIN_PASSWORD_LENGTH=6<BR /> Fri, 06 Jun 2003 16:39:05 GMT https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991237#M124409 Elena Leontieva 2003-06-06T16:39:05Z https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991238#M124410 On a non-trusted HP-UX system, only the first 8 characters are recognised.<BR /><BR /><BR />Pete Fri, 06 Jun 2003 16:41:43 GMT https://community.hpe.com/t5/operating-system-hp-ux/security-issue/m-p/2991238#M124410 Pete Randall 2003-06-06T16:41:43Z