X-Git-Url: https://git.stderr.nl/gitweb?a=blobdiff_plain;ds=sidebyside;f=etc%2Fpam.d%2Fcommon-password;fp=etc%2Fpam.d%2Fcommon-password;h=45959eb5afda0d96870e67e9844aff00eed9b2b7;hb=c2774739de942b750691e9a155dc003bae24afb8;hp=0000000000000000000000000000000000000000;hpb=4a563c95db08e878ed4dbf0d46db3db7d1557937;p=matthijs%2Fservers%2Fdrsnuggles.git

diff --git a/etc/pam.d/common-password b/etc/pam.d/common-password
new file mode 100644
index 0000000..45959eb
--- /dev/null
+++ b/etc/pam.d/common-password
@@ -0,0 +1,34 @@
+#
+# /etc/pam.d/common-password - password-related modules common to all services
+#
+# This file is included from other service-specific PAM config files,
+# and should contain a list of modules that define the services to be
+# used to change user passwords.  The default is pam_unix.
+
+# Explanation of pam_unix options:
+#
+# The "nullok" option allows users to change an empty password, else
+# empty passwords are treated as locked accounts.
+#
+# The "md5" option enables MD5 passwords.  Without this option, the
+# default is Unix crypt.
+#
+# The "obscure" option replaces the old `OBSCURE_CHECKS_ENAB' option in
+# login.defs.
+#
+# You can also use the "min" option to enforce the length of the new
+# password.
+#
+# See the pam_unix manpage for other options.
+
+password   required   pam_unix.so nullok obscure md5
+
+# Alternate strength checking for password. Note that this
+# requires the libpam-cracklib package to be installed.
+# You will need to comment out the password line above and
+# uncomment the next two in order to use this.
+# (Replaces the `OBSCURE_CHECKS_ENAB', `CRACKLIB_DICTPATH')
+#
+# password required	  pam_cracklib.so retry=3 minlen=6 difok=3
+# password required	  pam_unix.so use_authtok nullok md5
+