Very Computer

Hello,

I run RedHat 9.0 on my home PC so it is not necessary to use a complex
password. But the default password policy prohibits me from setting a
password less than 6 characters or not containing enough different
characters.

How can I disable or change this strict password policy?

thanks!

I don't know how to disable or change the policy, although
I'm sure there is probably a way to do it.  My suggestion
would be to use a decently strong password--unless the
machine in question is entirely isolated from the internet.
A weak password _could_ allow a cracker to hijack your
machine and use it as a platform for attacks against other
hosts.  That could cause serious trouble for a lot of
people--starting with a fleet of black Suburbans showing up
in your driveway.

Robert Riches

(Yes, that is one of my email addresses.)

I would also like to know this.  While I'm not interested in using
"simple" passwords, I would like to be able to change the policy to
match that of my employer.

Currently, I have to su to root to change any password.

--
========================================================================

========================================================================

Quote:> Hello,

> I run RedHat 9.0 on my home PC so it is not necessary to use a complex
> password. But the default password policy prohibits me from setting a
> password less than 6 characters or not containing enough different
> characters.

> How can I disable or change this strict password policy?

> thanks!

look in /etc/login.defs

you can set the lengths there.  not sure (yet) on how to handle the ruleset.
FYI. you can set the password to anything you want as root using:

(as root)
passwd <username>

It will warn you, but still set the password.

ken k

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

| Hello,
|
| I run RedHat 9.0 on my home PC so it is not necessary to use a complex
| password. But the default password policy prohibits me from setting a
| password less than 6 characters or not containing enough different
| characters.
|
| How can I disable or change this strict password policy?
|
| thanks!
I thought if you were root, and set the pwd, it would complain about it,
but not disallow it?

Anyway.  I used to use simple passwords.  But I find that the more often
I use something, the more complex the password can be and I still
remember and type it quickly...So i log in several times a day, that pwd
can be stoopid complex.

- --
L8r,

C.L. Gilbert
For a free Java interface to Freechess.org see
http://www.rigidsoftware.com/Chess/chess.html

"Verily, verily, I say unto you, He that entereth not by the door() into
the sheepfold{}, but climbeth up some other *way, the same is a thief
and a robber."  John 10:1

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE+4At8VbJM14DSCi0RAiViAKCHE3axFi7cO2P6AMrElvs3E9y6LACcD1gA
iN9qD54tHYdKZyHFIVErd+A=
=Pn6V
-----END PGP SIGNATURE-----

Quote:> Hello,

> I run RedHat 9.0 on my home PC so it is not necessary to use a complex
> password. But the default password policy prohibits me from setting a
> password less than 6 characters or not containing enough different
> characters.

> How can I disable or change this strict password policy?

I know it has something to do with "cracklib", a PAM module.  I think that
you might be able to do what you want by changing /etc/pam.d/system-auth.
On the line that mentions cracklib, change "required" to "optional".  Maybe
even try commenting the line out.

I've never tried this, so I have no clue what will happen... and at the
moment, I'm not anywhere near a box where I can test this.  Try it out (at
your own risk), and please report back if you get it working.

Good luck.

Nathan

thanks everybody!

I tried all the suggestions above.

The easiest way is to change passwords as root -- It will complain
about "BAD PASSWORD: it's WAY too short", but it doesn't matter. I saw
this message before, I thought it was an error, but it was just a
warning actually.

To allow users to set their own simple passwords, edit
/etc/login.defs.

By changing /etc/pam.d/system-auth, it also works but only for the
current session. After a reboot, the file will be generated again
automatically, thus the user changes will be lost.