From owner-freebsd-questions@FreeBSD.ORG  Mon May 15 20:46:14 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 43E8316B237
	for <freebsd-questions@freebsd.org>;
	Mon, 15 May 2006 20:46:14 +0000 (UTC)
	(envelope-from smurphy@calarts.edu)
Received: from muse2.calarts.edu (muse2.calarts.edu [198.182.157.28])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 52C0343D7C
	for <freebsd-questions@freebsd.org>;
	Mon, 15 May 2006 20:46:08 +0000 (GMT)
	(envelope-from smurphy@calarts.edu)
Received: from [198.182.157.171] (not-in-use.calarts.edu [198.182.157.171]
	(may be forged)) (authenticated bits=0)
	by muse2.calarts.edu (8.13.3/8.13.3) with ESMTP id k4FKk7GK059677
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT)
	for <freebsd-questions@freebsd.org>;
	Mon, 15 May 2006 13:46:08 -0700 (PDT)
	(envelope-from smurphy@calarts.edu)
Message-ID: <4468E8B1.1010202@calarts.edu>
Date: Mon, 15 May 2006 13:46:41 -0700
From: Sean Murphy <smurphy@calarts.edu>
User-Agent: Thunderbird 1.5.0.2 (Macintosh/20060308)
MIME-Version: 1.0
To: "'freebsd-questions@freebsd.org'" <freebsd-questions@freebsd.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Scanned-By: MIMEDefang 2.52 on 198.182.157.28
Subject: PAM and login.conf the login process
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 15 May 2006 20:46:16 -0000

I am trying to understand how users login and what does the system do 
specifically with validating the passwords and change passwords.

when I login at the console is the login/password information passed to 
PAM and does PAM check the login.conf for certain characteristics and 
then check the password file? Or does the login.conf only apply after 
the user has logged in?

Does the login.conf effect only shell accounts or can PAM check the 
login.conf to see if a user meets the minimum password change requirements?

For example I am using poppassd for users to change there passwords. 
The minimum is set in the login.conf for 6 characters.  If the user 
types less then 6 for his password will it error or reject the request? 
  Or does the login.conf only apply when in shell and not through daemons.

Thanks