Community
System Administration
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to force user ROOT to use STRONG password?

 
aaaA_4
Regular Advisor

‎04-17-2008 04:25 AM

‎04-17-2008 04:25 AM

How to force user ROOT to use STRONG password?

Hi everybody,

I'm trying to implement SMSE security features on 11.31 box and I want to force root account to use STRONG password. All PASSWORD like features in user database or /etc/default/security file seem to be useful just for non-root users (man security). What about root like users???

Any help will be appreciated.

n.
0 Kudos
Reply
6 REPLIES 6
Aashique
Honored Contributor

‎04-17-2008 04:28 AM

‎04-17-2008 04:28 AM

Re: How to force user ROOT to use STRONG password?

Hi,

Ya to enable strong password /etc/default/security file is enough

# Optional restrictions for new passwords
# PASSWORD_MIN_UPPER_CASE_CHARS=0
# PASSWORD_MIN_LOWER_CASE_CHARS=0
# PASSWORD_MIN_DIGIT_CHARS=1
# PASSWORD_MIN_SPECIAL_CHARS=2


Thanks & Regards

Aashique
0 Kudos
Reply
Torsten.
Acclaimed Contributor

‎04-17-2008 04:31 AM

‎04-17-2008 04:31 AM

Re: How to force user ROOT to use STRONG password?

At the moment I don't know about SMSE, but I would suggest "briefing", "work instruction" or "salary cut" for your root users.

root can do everything, even bad things ...

Hope this helps!
Regards
Torsten.

__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.
__________________________________________________
No support by private messages. Please ask the forum!

If you feel this was helpful please click the KUDOS! thumb below!   
0 Kudos
Reply
aaaA_4
Regular Advisor

‎04-17-2008 04:40 AM

‎04-17-2008 04:40 AM

Re: How to force user ROOT to use STRONG password?

Hi,

SMSE stands for Standard Mode Security Extensions...
As I mentioned, all PASSWORD like attributes (/etc/default/security) applies just to non-root users!

Any idea,
n.
0 Kudos
Reply
Sp4admin
Trusted Contributor

‎04-17-2008 10:43 AM

‎04-17-2008 10:43 AM

Re: How to force user ROOT to use STRONG password?

hello,

The /etc/default/security file doesn't pertain to root users. Can't you just make the password strong for root? SAM you just set the expiration and a couple of other things. I'm not sure about SMSE. I'm not sure of a file equivalent to /etc/default/security for root.

sp,
0 Kudos
Reply
aaaA_4
Regular Advisor

‎04-18-2008 01:10 AM

‎04-18-2008 01:10 AM

Re: How to force user ROOT to use STRONG password?

Hi everybody,

any idea???

Thank you,
n.
0 Kudos
Reply
Dennis Handly
Acclaimed Contributor

‎04-18-2008 02:55 AM

‎04-18-2008 02:55 AM

Re: How to force user ROOT to use STRONG password?

>any idea???

You are probably out of luck.
The only way to solve it is with software that can detect this after the fact. I suppose this may be impossible since the password is encrypted?

Or with people management tools like carrots and sticks.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.