From: Zaigui Wang (zaigui@yahoo.com)
Date: Wed Feb 19 2003 - 15:29:26 EST
As expected, a lot of the replies suggest that we, as
sysadmin, should not back down simply because some
user in the senior management does not like the
inconvenience that this has caused him/her. Education
is the buzz word for the solution.
I agree with you guys on most of the points and we are
still trying to resolve this by persuasion and
education. Politics aside, I do see though a
neccessity of making this restriction tunable. It is
my understanding that other OSes, such as Windows and
Novell, allows a more flexible password policy to be
customized based on the customers' need.
Many people assumed that the problem is with changing
from 3 to 2 or 1 letter difference, but the same
problem is still there if one day we decide that
3-letter difference is not strong enough to fend off
secuity breaches and would like to go up to 4-letter
or 5-letter difference.
I would appreciate it very much if our expert here can
provide some hints on modifying/writing PAM modules to
make this work...
Zaigui
> Hi managers,
>
> In solaris, when you change your password, the new
> password has to be different in three positions from
> the previous password.
>
> Is there any way this can be tuned? We are having
here
> some unhappy user (not just the regular user, I
assure
> you) and are asked to change this to 1-position
> different.
>
> SUN's answer to this is it is not tunable. Can
anybody
> provide some magic workaround?
>
> Zaigui
> Yahoo! Shopping - Send Flowers for Valentine's Day
> http://shopping.yahoo.com
Yahoo! Shopping - Send Flowers for Valentine's Day
http://shopping.yahoo.com
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:25:50 EDT