密码复杂性问题

Question

假设您正在使用pam_pwquality（从您的帖子中不清楚，并且difok每个网络搜索似乎被各种不同的 PAM 模块使用），然后root检查会跳过此测试，因为没有旧密码可供比较：

   enforce_for_root
       The module will return error on  failed  check  even  if  the  user
       changing  the password is root. This option is off by default which
       means that just the message about the failed check is  printed  but
       root  can  change  the password anyway. Note that root is not asked
       for an old password so the checks that  compare  the  old  and  new
       password are not performed.

此引用来自pam_pwquality(8)centos7 系统的手册页。

Answer 1

假设您正在使用pam_pwquality（从您的帖子中不清楚，并且difok每个网络搜索似乎被各种不同的 PAM 模块使用），然后root检查会跳过此测试，因为没有旧密码可供比较：

   enforce_for_root
       The module will return error on  failed  check  even  if  the  user
       changing  the password is root. This option is off by default which
       means that just the message about the failed check is  printed  but
       root  can  change  the password anyway. Note that root is not asked
       for an old password so the checks that  compare  the  old  and  new
       password are not performed.

此引用来自pam_pwquality(8)centos7 系统的手册页。

密码复杂性问题

答案1

相关内容