Problems with aged passwords (Red Hat 7.x, OpenSSH 2.9.x-3.0.2p1)
Nalin Dahyabhai
nalin at redhat.com
Thu Dec 20 04:01:24 EST 2001
On Wed, Dec 19, 2001 at 05:46:26PM +0100, Gunnar.Bluth at drkw.com wrote:
> We're experiencing weird problems here:
>
> The Solaris guys have user-packages, so we had to do this too for the Linux
> boxes (7.0, 7.1).
> Since some of the accounts get "easy" passwords set at install time, they are
> expired at once:
> /usr/bin/chage -m 7 -M 84 -W 14 <user>
>
> Now, at login, the user is prompted:
>
> You are required to change your password immediately (root enforced)
> Warning: Your password has expired, please change it now
> Changing password for <user>
> (current) UNIX password:xxxxxxxx
> New UNIX password:xxxxxxx (and yes, it definitly is a good one ;-) )
> BAD PASSWORD: is too simple
> New UNIX password:
> and so on...
This is a pam_cracklib bug. Because 7.0 and 7.1 sound like version
numbers of RHL, I'll point you at the update for RHL 7.1 at
http://www.redhat.com/support/errata/RHBA-2001-149.html. The updates
for 7.1 should work without difficulties on 7.0.
Cheers,
Nalin
More information about the openssh-unix-dev
mailing list