Entwicklungsumgebung/Dateiliste/common-password

/etc/pam.d/common-password

Achtung: Bitte achten Sie unbedingt darauf, beim Kopieren und Einfügen einen Editor mit UNIX-Zeilenumbrüchen zu verwenden!

Hinweis: Die im delixs-Schulserver geänderten Zeilen sind gelb unterlegt.

<source highlight="24-28" lang="text">

2. /etc/pam.d/common-password - password-related modules common to all services
4. This file is included from other service-specific PAM config files,
5. and should contain a list of modules that define the services to be
6. used to change user passwords. The default is pam_unix.

1. Explanation of pam_unix options:
3. The "nullok" option allows users to change an empty password, else
4. empty passwords are treated as locked accounts.
6. The "md5" option enables MD5 passwords. Without this option, the
7. default is Unix crypt.
9. The "obscure" option replaces the old `OBSCURE_CHECKS_ENAB' option in
10. login.defs.
12. You can also use the "min" option to enforce the length of the new
13. password.
15. See the pam_unix manpage for other options.

1. password required pam_unix.so nullok obscure md5

password [success=1 default=ignore] pam_unix.so nullok obscure min=4 max=8 md5 password required pam_ldap.so try_first_pass

1. password required pam_smbpass.so nullok use_authok try_first_pass

password required pam_permit.so

1. Alternate strength checking for password. Note that this
2. requires the libpam-cracklib package to be installed.
3. You will need to comment out the password line above and
4. uncomment the next two in order to use this.
5. (Replaces the `OBSCURE_CHECKS_ENAB', `CRACKLIB_DICTPATH')
7. password required pam_cracklib.so retry=3 minlen=6 difok=3
8. password required pam_unix.so use_authtok nullok md5

</source>