From owner-freebsd-current@FreeBSD.ORG  Thu Jul 24 08:45:42 2003
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5A64137B401
	for <current@freebsd.org>; Thu, 24 Jul 2003 08:45:42 -0700 (PDT)
Received: from smtp-2.llnl.gov (smtp-2.llnl.gov [128.115.250.82])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A8CD843F93
	for <current@freebsd.org>; Thu, 24 Jul 2003 08:45:41 -0700 (PDT)
	(envelope-from carlson39@llnl.gov)
Received: from carlson-pc.llnl.gov (localhost [127.0.0.1])
	h6OFjZF2000339
	for <current@freebsd.org>; Thu, 24 Jul 2003 08:45:35 -0700 (PDT)
Message-Id: <5.1.1.6.0.20030724083116.0c382b48@popcorn.llnl.gov>
X-Sender: e004282@popcorn.llnl.gov
X-Mailer: QUALCOMM Windows Eudora Version 5.1.1
Date: Thu, 24 Jul 2003 08:45:14 -0700
To: current@freebsd.org
From: Michael Carlson <carlson39@llnl.gov>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
Subject: login.conf issue
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Jul 2003 15:45:42 -0000

I am using login.conf to set a minimul password length in the default class 
and root class, after adding :minpasswordlen=8: to default and 
:minpasswordlen=11: to root and then running

$ cap_mkdb /etc/login.conf

I can still use a password of 1 character. This is on FreeBSD 5.1-RELEASE 
i386. I have tried this on a 4.8 system and this works fine, did I miss 
something in the release notes?

Below are the steps I took for 5.1

$ vim /etc/login.conf

default:\
         :passwd_format=md5:\
         :copyright=/etc/COPYRIGHT:\
         :welcome=/etc/motd:\
         :setenv=MAIL=/var/mail/$,BLOCKSIZE=K,FTP_PASSIVE_MODE=YES:\
         :path=/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin 
/usr/local/bin /usr/X11R6/bin ~/bin:\
         :nologin=/var/run/nologin:\
         :cputime=unlimited:\
         :datasize=unlimited:\
         :stacksize=unlimited:\
         :memorylocked=unlimited:\
         :memoryuse=unlimited:\
         :filesize=unlimited:\
         :coredumpsize=unlimited:\
         :openfiles=unlimited:\
         :maxproc=unlimited:\
         :sbsize=unlimited:\
         :vmemoryuse=unlimited:\
         :priority=0:\
         :ignoretime@:\
         :umask=022:\
         :minpasswordlen=8:

root:\
         :ignorenologin:\
         :minpasswordlen=8:\
         :tc=default:


$ cap_mkdb /etc/login.conf
$ passwd -l test
Changing local password for test.
New password: a
Retype new password: a
passwd: updating the database...
passwd: done
$

On 4.8, edits to login.conf are the same, and I get this for passwd:
$ passwd -l test
Changing local password for mcarlson.
New password: a
Please enter a password at least 8 characters in length
New password: ^c
Password unchanged.
passwd: /etc/master.passwd: unchanged
$

Thanks

Mike Carlson
carlson39@llnl.gov