by Hello gurus!
I have to set up strict password policies on servers running Solaris 9,
8, 7, and 2.6. I was working initially with one of the Sol9 boxes,
compiled a shared object using gcc 3.3.2, inserted the appropriate
entry in /etc/pam.conf, and palced the shared object in
/usr/lib/security. It worked! :-) Then I had gone to the other
extreme and tried to get it to work on one of the 2.6 boxes. It did
not work using 2.6. The compiler versions and shared library versions
are the same on both servers. The one abnormality I had observed was
that the /etc/pam.conf and the number of shared objects in
/usr/lib/security on the 2.6 box were considerably smaller than that of
the Sol9 box. I could not find any info via Google or at the Sun site
to see what has changed with regard to PAM.
By the way, if anyone is wondering, the difference between the
functionality of passwd on the servers is the following: example:
after putting the shared object(or PAM module) into place in
/usr/lib/security on the Sol9 box, invoking the passwd binary, and
entering a password that violates the policy, the appropriate error
message is displayed. In the case of the 2.6 box, when all of the
above is done, it still accepts any password as though nothing changed
and the PAM module does not exist. I have triple-checked ownership and
permissions on the shared object and all is correct. Any help would be
appreciated.