https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230992#M468441 Thanks for your support !!!! Thu, 18 Mar 2010 22:13:47 GMT rosa maria_1 2010-03-18T22:13:47Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230985#M468434 Hi,<BR /><BR />what kind of implications or issues can be generated if PASSWORD_HISTORY_DEPTH is activated ??<BR /><BR />thanks in advance Thu, 18 Mar 2010 18:49:58 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230985#M468434 rosa maria_1 2010-03-18T18:49:58Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230986#M468435 only that a password cannot be reused for more than once in X number of changes.<BR /><BR />e.g.<BR />PASSWORD_HISTORY_DEPTH=10<BR />must change password 10 times before the same password could be reused.<BR /><BR />are you thinking of something more ?<BR /> Thu, 18 Mar 2010 19:03:35 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230986#M468435 Tim Nelson 2010-03-18T19:03:35Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230987#M468436 well, I have seen that pwhist_* files are generated because of this variable in /tcb/files/auth/system/pwhist, is it correct? in this case root filesystem (/) can be full if this files are not configured correctly in my system, right? <BR />so I though other kind of similar issue can the system has...<BR />Am I right?? Thu, 18 Mar 2010 19:11:51 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230987#M468436 rosa maria_1 2010-03-18T19:11:51Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230988#M468437 I forgot to say, this variable is commented in the security file, but I do not the why, so I need to know implications before activate this variable in my system ... Thu, 18 Mar 2010 19:14:24 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230988#M468437 rosa maria_1 2010-03-18T19:14:24Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230989#M468438 Shalom,<BR /><BR />Unless you have a HUGE pile of users, 8 digit passwords are not going to fill up the root file system.<BR /><BR />SEP Thu, 18 Mar 2010 19:15:10 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230989#M468438 Steven E. Protter 2010-03-18T19:15:10Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230990#M468439 Good question.<BR /><BR />On my DB servers with 5 users and DEPTH=10 and passwd change at 6 times a year I have 32k of histories.<BR /><BR />A years worth ~= 6k per user ?<BR /><BR />if that math is correct the even with 1000 users with 30day change requirements would only be about 12m, right ? <BR /><BR />no worries.<BR /><BR /> Thu, 18 Mar 2010 19:26:47 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230990#M468439 Tim Nelson 2010-03-18T19:26:47Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230991#M468440 Yep, but I do not know if it is the only one problem can I have or can be other like this ... Thu, 18 Mar 2010 19:46:32 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230991#M468440 rosa maria_1 2010-03-18T19:46:32Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230992#M468441 Thanks for your support !!!! Thu, 18 Mar 2010 22:13:47 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230992#M468441 rosa maria_1 2010-03-18T22:13:47Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230993#M468442 &gt; Yep, but I do not know if it is the only one problem can I have or can be other like this ...<BR /> <BR />The biggest problem will be with your users which will be unhappy about not being able to bounce between a couple of favorite passwords. The space required is trivial. The reason it is commented out is like many options in the default security file (in the past, there was no file at all) is that the system administrator should make a conscious decision about security restrictions. Fri, 19 Mar 2010 01:06:16 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230993#M468442 Bill Hassell 2010-03-19T01:06:16Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230994#M468443 you have reason...<BR /><BR />Thanks all for you, every answer helps me a lot ... Fri, 19 Mar 2010 19:20:10 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230994#M468443 rosa maria_1 2010-03-19T19:20:10Z https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230995#M468444 Every answer helps me to validate options and to know implications about security servers. Fri, 19 Mar 2010 19:29:53 GMT https://community.hpe.com/t5/operating-system-hp-ux/using-password-history-depth/m-p/5230995#M468444 rosa maria_1 2010-03-19T19:29:53Z