Feature #2691

Enable password history by default

Added by Filippo Carletti almost 6 years ago. Updated over 3 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:-
Target version:~FUTURE
Resolution:REJECTED NEEDINFO:No

Description

Law in Italy requires password expiration every 3/6 months. A common trick to avoid using a new password is to rewrite the same old password when prompted to change.
Enabling password history should fix wrong user behaviour.
Fixing the law it's a different issue.

History

#1 Updated by Filippo Carletti over 5 years ago

In /etc/pam.d/system-auth

password    sufficient    pam_unix.so nullok md5 shadow remember=nn

where nn is the number of previous passwords to "remember".

#2 Updated by Davide Principi over 5 years ago

  • Target version set to ~FUTURE

#3 Updated by Giacomo Sanchietti over 3 years ago

  • Resolution set to REJECTED

This feature will not be implemented in NS 6. In NS 7 Samba 4 already has it enabled.

#4 Updated by Giacomo Sanchietti over 3 years ago

  • Status changed from NEW to CLOSED
  • % Done changed from 0 to 100

Also available in: Atom PDF