HPE Community
Operating System - HP-UX
1830085 Members
12886 Online
109998 Solutions
New Discussion

parameter passwd

 
SOLVED
Go to solution
Vogra
Regular Advisor

‎12-17-2002 09:39 AM

‎12-17-2002 09:39 AM

parameter passwd

Hi All!
where can I find the file that maintain parameters about password? I know I have to chose a password that use alfabetical and numerical characters, but I don't know where it was defined...
My system are not trusted, but I know its get rules to make construct passwors like "two alfabetical more one numerial character" etc...
thanxs
We are spirits in the material world
0 Kudos
Reply
5 REPLIES 5
James R. Ferguson
Acclaimed Contributor

‎12-17-2002 09:46 AM

‎12-17-2002 09:46 AM

Re: parameter passwd

Hi:

See the man pages for 'security(4)'.

Regards!

...JRF...
0 Kudos
Reply
Pete Randall
Outstanding Contributor

‎12-17-2002 09:47 AM

‎12-17-2002 09:47 AM

Re: parameter passwd

/etc/default/security ?

Pete

Pete
Reply
Patrick Wallek
Honored Contributor

‎12-17-2002 09:53 AM

‎12-17-2002 09:53 AM

Solution

Re: parameter passwd

Check out the following manual:

http://docs.hp.com/hpux/onlinedocs/B2355-90696/B2355-90696.html

It is the HP-UX 11i section 4 manual which does contain the entry for 'security'. I could not find the entry online in the 11.0 manuals or on some of my 11.0 systems.
Reply
doug hosking
Esteemed Contributor

‎12-18-2002 04:04 PM

‎12-18-2002 04:04 PM

Re: parameter passwd

You might be interested in patches
PHCO_27797 and PHCO_24390 or equivalents.
Quoting from the patch doc file:

A site's security policies sometimes require new passwords
to contain specific numbers or types of characters, such as
at least two digits and at least one special character.
Resolution:
In addition to the standard password requirements,
optional entries in the file /etc/default/security specify
the minimum number of required characters of each type
(upper case characters, lower case characters, digits
and special characters) in a new password.
PASSWORD_MIN_UPPER_CASE_CHARS=N
PASSWORD_MIN_LOWER_CASE_CHARS=N
PASSWORD_MIN_DIGIT_CHARS=N
PASSWORD_MIN_SPECIAL_CHARS=N
The default value for N is 0. These parameters have
effect only when a password is changed. On untrusted
systems, these parameters do not apply to the root user.
The file /etc/default/security should be owned by root and
have 0644 permissions.
As an example, to require passwords at least 8 characters
long, composed of at least 5 upper case characters, 2
lower case characters and a digit, include the following
lines in /etc/default/security, as specified above:
PASSWORD_MIN_UPPER_CASE_CHARS=5
PASSWORD_MIN_LOWER_CASE_CHARS=2
PASSWORD_MIN_DIGIT_CHARS=1
Reply
Bill Hassell
Honored Contributor

‎12-18-2002 08:38 PM

‎12-18-2002 08:38 PM

Re: parameter passwd

You didn't post the opsystem revision, so in case you are running obsolete 10.20, the comments about /etc/default/security do not apply. In 10.20, the rules are defined in the passwd program and cannot be changed. For 11.0 and higher, you can set the policy via the security file *BUT* you must load the relevant libpam patches to add that capability. Also, the security man page is missing in 11.0 but found in 11i (11.11) and you can read it at docs.hp.com. In a future release, the security file will be populated with comments so all the options will be visible. Unfortunately, is any of the entries are misspelled or have a wrong option, the item is silently ignored.


Bill Hassell, sysadmin
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.