[PATCH] Password expiry with Privsep and PAM

Darren Tucker dtucker at zip.com.au
Thu Jan 2 21:36:56 EST 2003


Kevin Steves wrote:
> i do really like the idea of using passwd.

Originally I didn't but having tried a bunch of other ways I do now :-)

As Jan-Frode Myklebust pointed out, using /bin/passwd also makes sure
you obey whatever password complexity rules are set up (eg
/etc/default/passwd on Solaris or /etc/security/user on AIX).

Otherwise, you need a bunch of additional platform-specific code to
enforce that.

-- 
Darren Tucker (dtucker at zip.com.au)
GPG Fingerprint D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.



More information about the openssh-unix-dev mailing list