Date: Tue, 07 Jan 2003 11:39:43 -0600 From: "Robinson, Rick" <Rick.Robinson@bankofamerica.com> To: "'freebsd-security@freebsd.org'" <freebsd-security@freebsd.org> Subject: Unix Password Expiration Questions Message-ID: <AFB399ACC132D511A0F700508B6FC8D2015797BC@mail.bankofamerica.com>
next in thread | raw e-mail | index | archive | help
I also sent this question to freebsd-questions, but I am not sure if that is the right place for it. I am working on trying to setup Unix password expiration and I have run into a few problems. I have added the following lines into the login.conf. :passwordtime=90d:\ :warnpassword=5d:\ And now the passwords expire if they haven't been changed after 90 days. However I have a couple of questions. Right now once your password is expired the system doesn't force you to change your password to a different password. It prompts you for the old password and then when it prompts you for the new password it allows you to use the exact same password. That kind of defeats the purpose of expiring them in the first place. Is there anyway to force the user to use a new password? And even better is there a way to force them to not use one of their last 10 passwords? Also once the password has been changed the system is logging me out. This can be confusing if you don't notice you were logged out because it looks like it just dropped you to your shell when actuality it dropped you back tot he shell you were coming from. Is there anyway to get the system to not drop your connection when you change your password? Thanks for the help. Rick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AFB399ACC132D511A0F700508B6FC8D2015797BC>