NIS and PAM
Ted Beaton
tbeaton at plansysit.com
Fri Dec 24 17:09:42 UTC 2004
Does anyone know how to force yppasswd to go through pam_cracklib.so? I am
building a small lan that can be classified or unclassified depending on
which set of removable drives are put in the machines. It's a convoluted
path that led me to this set up but the bottom line is, without
pam_cracklib.so I don't know how to enforce the required complexity of
passwords and I haven't been able to figure out how to get yppasswd to use
pam_cracklib.so. My understanding is yppasswd on the client just talks
directly to the NIS server which updates it's own password databases and it
bypasses pam completely. Or is there some other module or method by which I
can do this? My fall back is make it so no one can change the passwords but
me but I have a feeling the Defense Security Service would prefer it was
enforced by an application.
Ted
More information about the Pam-list
mailing list