|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Robinson, Rick (Rick.Robinson_at_bankofamerica.com)
Date: Tue Jan 07 2003 - 11:39:43 CST
I also sent this question to freebsd-questions, but I am not sure if that is
the right place for it.
I am working on trying to setup Unix password expiration and I have run into
a few problems. I have added the following lines into the login.conf.
:passwordtime=90d:\
:warnpassword=5d:\
And now the passwords expire if they haven't been changed after 90 days.
However I have a couple of questions. Right now once your password is
expired the system doesn't force you to change your password to a different
password. It prompts you for the old password and then when it prompts you
for the new password it allows you to use the exact same password. That kind
of defeats the purpose of expiring them in the first place. Is there anyway
to force the user to use a new password? And even better is there a way to
force them to not use one of their last 10 passwords?
Also once the password has been changed the system is logging me out. This
can be confusing if you don't notice you were logged out because it looks
like it just dropped you to your shell when actuality it dropped you back
tot he shell you were coming from. Is there anyway to get the system to not
drop your connection when you change your password? Thanks for the help.
Rick
To Unsubscribe: send mail to majordomo
FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]