HPE Community
Operating System - HP-UX
1752758 Members
4994 Online
108789 Solutions
New Discussion юеВ

How to force user ROOT to use STRONG password?

 
aaaA_4
Regular Advisor

тАО04-17-2008 04:25 AM

тАО04-17-2008 04:25 AM

How to force user ROOT to use STRONG password?

Hi everybody,

I'm trying to implement SMSE security features on 11.31 box and I want to force root account to use STRONG password. All PASSWORD like features in user database or /etc/default/security file seem to be useful just for non-root users (man security). What about root like users???

Any help will be appreciated.

n.
0 Kudos
Reply
6 REPLIES 6
Aashique
Honored Contributor

тАО04-17-2008 04:28 AM

тАО04-17-2008 04:28 AM

Re: How to force user ROOT to use STRONG password?

Hi,

Ya to enable strong password /etc/default/security file is enough

# Optional restrictions for new passwords
# PASSWORD_MIN_UPPER_CASE_CHARS=0
# PASSWORD_MIN_LOWER_CASE_CHARS=0
# PASSWORD_MIN_DIGIT_CHARS=1
# PASSWORD_MIN_SPECIAL_CHARS=2


Thanks & Regards

Aashique
0 Kudos
Reply
Torsten.
Acclaimed Contributor

тАО04-17-2008 04:31 AM

тАО04-17-2008 04:31 AM

Re: How to force user ROOT to use STRONG password?

At the moment I don't know about SMSE, but I would suggest "briefing", "work instruction" or "salary cut" for your root users.

root can do everything, even bad things ...

Hope this helps!
Regards
Torsten.

__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.
__________________________________________________
No support by private messages. Please ask the forum!

If you feel this was helpful please click the KUDOS! thumb below!   
0 Kudos
Reply
aaaA_4
Regular Advisor

тАО04-17-2008 04:40 AM

тАО04-17-2008 04:40 AM

Re: How to force user ROOT to use STRONG password?

Hi,

SMSE stands for Standard Mode Security Extensions...
As I mentioned, all PASSWORD like attributes (/etc/default/security) applies just to non-root users!

Any idea,
n.
0 Kudos
Reply
Sp4admin
Trusted Contributor

тАО04-17-2008 10:43 AM

тАО04-17-2008 10:43 AM

Re: How to force user ROOT to use STRONG password?

hello,

The /etc/default/security file doesn't pertain to root users. Can't you just make the password strong for root? SAM you just set the expiration and a couple of other things. I'm not sure about SMSE. I'm not sure of a file equivalent to /etc/default/security for root.

sp,
0 Kudos
Reply
aaaA_4
Regular Advisor

тАО04-18-2008 01:10 AM

тАО04-18-2008 01:10 AM

Re: How to force user ROOT to use STRONG password?

Hi everybody,

any idea???

Thank you,
n.
0 Kudos
Reply
Dennis Handly
Acclaimed Contributor

тАО04-18-2008 02:55 AM

тАО04-18-2008 02:55 AM

Re: How to force user ROOT to use STRONG password?

>any idea???

You are probably out of luck.
The only way to solve it is with software that can detect this after the fact. I suppose this may be impossible since the password is encrypted?

Or with people management tools like carrots and sticks.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.