From owner-freebsd-questions@FreeBSD.ORG  Tue Aug 19 13:30:26 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 17B6C16A4BF
	for <freebsd-questions@freebsd.org>;
	Tue, 19 Aug 2003 13:30:26 -0700 (PDT)
Received: from silvertree.org (arthur.silvertree.org [64.139.44.194])
	by mx1.FreeBSD.org (Postfix) with SMTP id 5215243FBF
	for <freebsd-questions@freebsd.org>;
	Tue, 19 Aug 2003 13:30:24 -0700 (PDT)
	(envelope-from archon-sender-7e5359@silvertree.org)
Received: (qmail 12584 invoked from network); 19 Aug 2003 20:30:23 -0000
Received: from localhost.silvertree.org (HELO arthur.silvertree.org)
	(127.0.0.1)
	by localhost.silvertree.org with SMTP; 19 Aug 2003 20:30:23 -0000
Received: by arthur.silvertree.org (tmda-sendmail, from uid 1001);
	Tue, 19 Aug 2003 13:30:23 -0700 (PDT)
Date: Tue, 19 Aug 2003 13:30:21 -0700
To: freebsd-questions@freebsd.org
Message-ID: <20030819203021.GA12492@silvertree.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.4.1i
From: Scott Schappell <archon-sender-7e5359@silvertree.org>
Mail-Followup-To: freebsd-questions@freebsd.org
X-Delivery-Agent: TMDA/0.82 (Needles)
Subject: Forcing users to use unique passwords?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: Scott Schappell <archon-dated-1061929823.62f303@silvertree.org>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Aug 2003 20:30:26 -0000

I've did a google search on this, and an archive search. For an extra
measure of completeness, I scanned the handbook. 

Here's the question:

I currently make my users reset their passwords every 90 days. 
However, nothing stops them from reusing the same password. passwd 
happily allows users to reuse a password. Since that's the case,
what's the point of enabling password expiration, since most users
will probably reuse their password (after all, it's convenient to do
so).

Is there a way to change login.conf to force unique passwords?  Or
would I have to wrap passwd in a shell script of some sort?

Thanks in advance for your help!
-- 
PGP Key: http://archon.silvertree.org/pgp.txt
"Compassion and retribution are two sides of the same coin. Necessity
dictates on what side the coin will fall."