Lines Matching refs:password
1 pam_passwdqc is a simple password strength checking module for
2 PAM-aware password changing programs, such as passwd(1). In addition
7 This module should be stacked before your usual password changing
8 module (such as pam_unix or pam_pwdb) in the password management group
9 (the "password" lines in /etc/pam.d/passwd or /etc/pam.conf). The
10 password changing module should then be told to use the provided new
11 authentication token (new password) rather than request it from the
13 password changing module lacks the "use_authtok" option or its prompts
15 for the old password as well, with "ask_oldauthtok". In that case the
16 option to use with the password changing module is "use_first_pass".
23 The minimum allowed password lengths, separately for different kinds
45 password are not counted.
53 The maximum allowed password length. This can be used to prevent
60 the traditional crypt(3) password hashes.
72 The length of common substring required to conclude that a password is
74 or 0 to disable the substring search. Note that the password will not
75 be rejected once a weak substring is found. Instead, the password
84 Whether a new password is allowed to be similar to the old one. The
86 long common substring and the new password with the substring removed
106 login information and use that during the password strength checks.
111 The number of times the module will ask for a new password if the user
112 fails to provide a sufficiently strong password and enter it twice the
117 Ask for the old password as well. Normally, pam_passwdqc leaves this
118 task for the password changing module. A simple "ask_oldauthtok" will
119 cause pam_passwdqc to ask for the old password during the preliminary
125 This tells pam_passwdqc to validate the old password before giving a
126 new password prompt. Normally, this task is left for the password
131 password between the prompts. Of course, this will only work with
137 Use the new password obtained by modules stacked before pam_passwdqc.