This content has been marked as final. Show 6 replies
I followed the next steps:
1- Change "PASSLENGTH" parameter with value 14 (only this parameter the rest of them are equals)
2- Reboot Solaris
3- Set intial password with value "9RunForrestRon"
4- The next attemp i can set a new password with value "9RumForrestRon", so why i can set password with a mindiff=1?
Could you tell me a "MINDIFF" definition with more details that manual of passwd
"Minimum differences required between an old and a new password. If MINDIFF is not set, the default is 3."
MINDIFF tells Solaris how much difference there must be (in characters) between the old password and the new password.
If you set it to 1, you tell the OS that a user must change, at a minimum, one character in their password when they change it.
The difference between the two passwords you gave me in your last example..:
.. is exactly one character, so it should be ok.
However, if you would set MINPASS to a value greater than 1, this shouldn't have worked..
The test that i posted was a with mindiff=3 (all parameter values are the same that i published in this thread except Passlength). If i follow your mindiff definition, this case refutes the definition (last posted), but i agree with when you said that this change should not work. Probably this is a bug on Solaris Password Policy. Maybe the mindiff parameter is conditional with other parameter or maybe i omitted a configuration of system. Could you tell me where i locate the Solaris code that validate the "string" password with password policy configuration?.
Thank you for your help,
My best regards,