Environment: Tru64 5.1 with IAEBASE420 and enhanced security
The 'passwd' command is identifying that it requires a password minimum
length of 10 characters. The man page indicates that it looks for a
minimum length of 6 characters.
I am using the default 'pwpolicy' and have not changed the default entry in
/etc/auth/system/default.
'edauth' is not running under this restriction.
Where I am experiencing the problem:
I am using IASS which uses a script called 'change_pw.tcl'.
This script references 'check_pw_proc.tcl' which determines the 6 character
minimum.
'change_pw.tcl' calls 'autopasswd' via the catch command.
'autopasswd' makes a call to 'passwd'.
If a user is entering a password under 10 characters, it passes the
'check_pw_proc.tcl' requirements but fails to change the password due to
insufficient password length. Because the 'autopasswd' script properly
exits with a 0 status, the user is being returned a 'successful password
change' message. However, the password isn't changed.
I realize that I can change 'check_pw_proc.tcl' to up the requirement but I
do not wish to require a minimum password length of 10 characters and I
need to be consistent amongst systems.
What policy or profile is 'passwd' reading to make its minimum and maximum
password character requirements? I have looked through all possible
configuration files that I can find in the documentation cannot locate the
database or configuration file that is posing this limitation nor the
information as to how to change it.
I am using command-line utilities since I cannot run an Xserver behind a
firewall. A non-X answer would be greatly appreciated! Summary to
follow. Thanks in advance.
Received on Wed Dec 13 2000 - 21:13:19 NZDT