https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777614#M23055 In the Redhat server , I will force the user change the password regularly by "chage -d0 userid", could suggest how to prevent the user use the simple password eg. 123456 ? thx. Tue, 25 Apr 2006 21:39:17 GMT ivychung2 2006-04-25T21:39:17Z https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777614#M23055 In the Redhat server , I will force the user change the password regularly by "chage -d0 userid", could suggest how to prevent the user use the simple password eg. 123456 ? thx. Tue, 25 Apr 2006 21:39:17 GMT https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777614#M23055 ivychung2 2006-04-25T21:39:17Z https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777615#M23056 Normally, the pam_cracklib is enabled and it does not allow the use of simple passwords.<BR /><BR />Check your /etc/pam.d/system-auth file, you should have lines like this:<BR /><BR />password requisite /lib/security/$ISA/pam_cracklib.so retry=3 <BR /><BR />Only root can force the use of simple passwords. Tue, 25 Apr 2006 21:48:42 GMT https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777615#M23056 Ivan Ferreira 2006-04-25T21:48:42Z https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777616#M23057 thx reply ,<BR /><BR />I check that the setting you said is existed in my server , I found that when I use the simple password , the server will prompt me the password is too simple ( BAD PASSWORD: it is too simplistic/systematic ) but it still allow me to use this simple password , I think this only a warning message , could suggest how can I provent the user use it ? thx in advance. Tue, 25 Apr 2006 22:06:39 GMT https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777616#M23057 ivychung2 2006-04-25T22:06:39Z https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777617#M23058 You can customize you PAM to add password integrity checkers, such as pam_passwdqc (available from <A href="http://www.openwall.com/passwdqc/)" target="_blank">http://www.openwall.com/passwdqc/)</A> or write your own module. For a list of available PAM modules, see <A href="http://www.kernel.org/pub/linux/libs/pam/modules.html." target="_blank">http://www.kernel.org/pub/linux/libs/pam/modules.html.</A> For more information about PAM, see the chapter titled Pluggable Authentication Modules (PAM) in the Official Red Hat Linux Reference Guide.<BR /> Tue, 25 Apr 2006 23:10:26 GMT https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777617#M23058 Ajay Agarwal 2006-04-25T23:10:26Z https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777618#M23059 I would also encourage you to check out this link: <A href="http://forums1.itrc.hp.com/service/forums/helptips.do?#28" target="_blank">http://forums1.itrc.hp.com/service/forums/helptips.do?#28</A> to learn about the point system of this forum. Tue, 25 Apr 2006 23:37:29 GMT https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777618#M23059 Ajay Agarwal 2006-04-25T23:37:29Z https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777619#M23060 &gt;I check that the setting you said is &gt;existed in my server , I found that when I &gt;use the simple password , the server will &gt;prompt me the password is too simple ( BAD &gt;PASSWORD: it is too &gt;simplistic/systematic ) but it still allow &gt;me to use this simple password , I think &gt;this only a warning message , could &gt;suggest how can I provent the user use &gt;it ? thx in advance.<BR /><BR />run "passwd" as regular user and you'll see that regular user cannot set trivial password. <BR />And for root it's just warning! Wed, 26 Apr 2006 06:09:51 GMT https://community.hpe.com/t5/operating-system-linux/user-password/m-p/3777619#M23060 Vitaly Karasik_1 2006-04-26T06:09:51Z