1*7c478bd9Sstevel@tonic-gate#ident "%Z%%M% %I% %E% SMI" 2*7c478bd9Sstevel@tonic-gate# 3*7c478bd9Sstevel@tonic-gate# Copyright 2005 Sun Microsystems, Inc. All rights reserved. 4*7c478bd9Sstevel@tonic-gate# Use is subject to license terms. 5*7c478bd9Sstevel@tonic-gate# 6*7c478bd9Sstevel@tonic-gate# CDDL HEADER START 7*7c478bd9Sstevel@tonic-gate# 8*7c478bd9Sstevel@tonic-gate# The contents of this file are subject to the terms of the 9*7c478bd9Sstevel@tonic-gate# Common Development and Distribution License, Version 1.0 only 10*7c478bd9Sstevel@tonic-gate# (the "License"). You may not use this file except in compliance 11*7c478bd9Sstevel@tonic-gate# with the License. 12*7c478bd9Sstevel@tonic-gate# 13*7c478bd9Sstevel@tonic-gate# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 14*7c478bd9Sstevel@tonic-gate# or http://www.opensolaris.org/os/licensing. 15*7c478bd9Sstevel@tonic-gate# See the License for the specific language governing permissions 16*7c478bd9Sstevel@tonic-gate# and limitations under the License. 17*7c478bd9Sstevel@tonic-gate# 18*7c478bd9Sstevel@tonic-gate# When distributing Covered Code, include this CDDL HEADER in each 19*7c478bd9Sstevel@tonic-gate# file and include the License file at usr/src/OPENSOLARIS.LICENSE. 20*7c478bd9Sstevel@tonic-gate# If applicable, add the following below this CDDL HEADER, with the 21*7c478bd9Sstevel@tonic-gate# fields enclosed by brackets "[]" replaced with your own identifying 22*7c478bd9Sstevel@tonic-gate# information: Portions Copyright [yyyy] [name of copyright owner] 23*7c478bd9Sstevel@tonic-gate# 24*7c478bd9Sstevel@tonic-gate# CDDL HEADER END 25*7c478bd9Sstevel@tonic-gate# 26*7c478bd9Sstevel@tonic-gateMAXWEEKS= 27*7c478bd9Sstevel@tonic-gateMINWEEKS= 28*7c478bd9Sstevel@tonic-gatePASSLENGTH=6 29*7c478bd9Sstevel@tonic-gate 30*7c478bd9Sstevel@tonic-gate# NAMECHECK enables/disables login name checking. 31*7c478bd9Sstevel@tonic-gate# The default is to do login name checking. 32*7c478bd9Sstevel@tonic-gate# Specifying a value of "NO" will disable login name checking. 33*7c478bd9Sstevel@tonic-gate# 34*7c478bd9Sstevel@tonic-gate#NAMECHECK=NO 35*7c478bd9Sstevel@tonic-gate 36*7c478bd9Sstevel@tonic-gate# HISTORY sets the number of prior password changes to keep and 37*7c478bd9Sstevel@tonic-gate# check for a user when changing passwords. Setting the HISTORY 38*7c478bd9Sstevel@tonic-gate# value to zero (0), or removing/commenting out the flag will 39*7c478bd9Sstevel@tonic-gate# cause all users' prior password history to be discarded at the 40*7c478bd9Sstevel@tonic-gate# next password change by any user. No password history will 41*7c478bd9Sstevel@tonic-gate# be checked if the flag is not present or has zero value. 42*7c478bd9Sstevel@tonic-gate# The maximum value of HISTORY is 26. 43*7c478bd9Sstevel@tonic-gate# 44*7c478bd9Sstevel@tonic-gate# This flag is only enforced for user accounts defined in the 45*7c478bd9Sstevel@tonic-gate# local passwd(4)/shadow(4) files. 46*7c478bd9Sstevel@tonic-gate# 47*7c478bd9Sstevel@tonic-gate#HISTORY=0 48*7c478bd9Sstevel@tonic-gate# 49*7c478bd9Sstevel@tonic-gate# Password complexity tunables. The values listed are the defaults 50*7c478bd9Sstevel@tonic-gate# which are compatible with previous releases of passwd. 51*7c478bd9Sstevel@tonic-gate# See passwd(1) and pam_authtok_check(5) for use warnings and 52*7c478bd9Sstevel@tonic-gate# discussion of the use of these options. 53*7c478bd9Sstevel@tonic-gate# 54*7c478bd9Sstevel@tonic-gate#MINDIFF=3 55*7c478bd9Sstevel@tonic-gate#MINALPHA=2 56*7c478bd9Sstevel@tonic-gate#MINNONALPHA=1 57*7c478bd9Sstevel@tonic-gate#MINUPPER=0 58*7c478bd9Sstevel@tonic-gate#MINLOWER=0 59*7c478bd9Sstevel@tonic-gate#MAXREPEATS=0 60*7c478bd9Sstevel@tonic-gate#MINSPECIAL=0 61*7c478bd9Sstevel@tonic-gate#MINDIGIT=0 62*7c478bd9Sstevel@tonic-gate#WHITESPACE=YES 63*7c478bd9Sstevel@tonic-gate# 64*7c478bd9Sstevel@tonic-gate# 65*7c478bd9Sstevel@tonic-gate# passwd performs dictionary lookups if DICTIONLIST or DICTIONDBDIR 66*7c478bd9Sstevel@tonic-gate# is defined. If the password database does not yet exist, it is 67*7c478bd9Sstevel@tonic-gate# created by passwd. See passwd(1), pam_authtok_check(5) and 68*7c478bd9Sstevel@tonic-gate# mkpwdict(1M) for more information. 69*7c478bd9Sstevel@tonic-gate# 70*7c478bd9Sstevel@tonic-gate#DICTIONLIST= 71*7c478bd9Sstevel@tonic-gate#DICTIONDBDIR=/var/passwd 72