HPE Community
Operating System - HP-UX
1851035 Members
2079 Online
104056 Solutions
New Discussion

Re: password policy

 
ebnsys2ek
Occasional Contributor

‎08-13-2003 12:29 AM

‎08-13-2003 12:29 AM

password policy

I run HP-UX 10.20 trusted and I have some problems with the password policy. It does'nt seem possible to alter the default minimum password length of 8 charachters. Root may override this for himself, but there are no options in SAM for this. There is however an option for altering the maximum password length... as if that was important to restrict?!?

Now I wander if anyone knows how to alter the default minimum passwordlength. Or at least give me a straight answer whether it's possible or not?
0 Kudos
Reply
12 REPLIES 12
Zigor Buruaga
Esteemed Contributor

‎08-13-2003 12:46 AM

‎08-13-2003 12:46 AM

Re: password policy

Hi,

I also have HP-UX 10.20 trusted and the minimum password length is 6 characters.
The only way I know to alter that value is on "/etc/default/security", check this link:
http://www.unixadm.net/howto/etc-security.html

But I'm not using that file.
Hope this helps.
Regards,
Zigor
0 Kudos
Reply
twang
Honored Contributor

‎08-13-2003 12:49 AM

‎08-13-2003 12:49 AM

Re: password policy

You may try to set the minimum to 8 by using the MIN_PASSWORD_LENGTH variable in /etc/default/security and see if it works.
0 Kudos
Reply
Darren Prior
Honored Contributor

‎08-13-2003 01:12 AM

‎08-13-2003 01:12 AM

Re: password policy

Hi,

I believe that the minimum password length for a 10.20 trusted system is determined from a formula that involves password ageing. The maximum password length is important to some customers - but it only applies to system-generated passwords.

There's far more control over password length in HP-UX 11 and above, where the /etc/default/security file can be used. Please note that 10.20 is no longer supported by HP.

regards,

Darren.
Calm down. It's only ones and zeros...
0 Kudos
Reply
ebnsys2ek
Occasional Contributor

‎08-13-2003 03:49 AM

‎08-13-2003 03:49 AM

Re: password policy

There was no /etc/default/security file in 10.20 trusted, so I made one and edited the MIN_PASSWORD_LENGTH=XX into it. Unfortunately that did'nt work, so unless anyone else has any bright ideas, I'll have to either live with 6 characters or change to 11.X. Now it does'nt take a master degree in economics to figure out the cheaper choice!
0 Kudos
Reply
ebnsys2ek
Occasional Contributor

‎09-03-2003 03:14 AM

‎09-03-2003 03:14 AM

Re: password policy

The /etc/default/security did not exist on my 10.20. I tried to touch such a file and edit it with the "MIN_PASSWORD_LENGTH"-string, but it didn't pay off.

Any other suggestions?
0 Kudos
Reply
T G Manikandan
Honored Contributor

‎09-03-2003 03:18 AM

‎09-03-2003 03:18 AM

Re: password policy

This feature was first introduced in HP-UX 11.0 patch PHCO_20334.

you cannot use this in 10.20
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎09-03-2003 03:21 AM

‎09-03-2003 03:21 AM

Re: password policy

The security file is an 11.xx feature and will not be backported to 10.20. You can create any password length (only the first 8 are significant) using the attached program and then paste it into the passwd file in the appropriate location. A significant number of security features were added to 11.0 but enhancments to 10.20 terminated several years ago and the last full patch set was released Dec 2001.


Bill Hassell, sysadmin
0 Kudos
Reply
Darren Prior
Honored Contributor

‎09-03-2003 03:21 AM

‎09-03-2003 03:21 AM

Re: password policy

The straight answer is you cannot do this in 10.20. I believe the /etc/defaults/security file is only valid for 11.00 onwards - libpam_unix at 10.20 is not aware of the file.

regards,

Darren.
Calm down. It's only ones and zeros...
0 Kudos
Reply
Pete Randall
Outstanding Contributor

‎09-03-2003 03:22 AM

‎09-03-2003 03:22 AM

Re: password policy

The MIN_PASSWORD_LENGTH functionality was introduced to 11.0 by PHCO_26089 - and there are no equivalent patches for 10.20.


See this thread:

http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x922dc72e7884b24ca45c35aea73fef25,00.html


Pete


Pete
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎09-03-2003 03:22 AM

‎09-03-2003 03:22 AM

Re: password policy

Here is the password creation program...


Bill Hassell, sysadmin
0 Kudos
Reply
Zigor Buruaga
Esteemed Contributor

‎09-03-2003 03:55 AM

‎09-03-2003 03:55 AM

Re: password policy

Hi,

Please accept my apologies. I posted my initial reply without testing it in HP-UX 10.20, sorry for wasting your time. My reply only deserved a big 0.

Kind regards and sorry again,
Zigor
0 Kudos
Reply
Kiran Kumar Aekabote
Frequent Advisor

‎09-03-2003 04:01 AM

‎09-03-2003 04:01 AM

Re: password policy

Hi

Try as below, using sam
sam -> Audting and security ->system security policies -> password format policies

Here set the max password length as 8 or less than 8 and it will apply for all users.

The above works in 11.0, but see will it possible in 10.20 also.

Regards
Kiran
You Just can't beat ME
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.