Im not expert in solaris so , Could any explain me, why i can set "2013LofMeOnMay" as my new password if my old password was "2013LogMeOnMay", please?
may be i am making an mistake ? Is possible that MINDIFF parameter doesnt work properly ?
the MINDIFF between two pasword is equal 1?
I followed the next steps:
1- Change "PASSLENGTH" parameter with value 14 (only this parameter the rest of them are equals)
2- Reboot Solaris
3- Set intial password with value "9RunForrestRon"
4- The next attemp i can set a new password with value "9RumForrestRon", so why i can set password with a mindiff=1?
Could you tell me a "MINDIFF" definition with more details that manual of passwd
"Minimum differences required between an old and a new password. If MINDIFF is not set, the default is 3."
The test that i posted was a with mindiff=3 (all parameter values are the same that i published in this thread except Passlength). If i follow your mindiff definition, this case refutes the definition (last posted), but i agree with when you said that this change should not work. Probably this is a bug on Solaris Password Policy. Maybe the mindiff parameter is conditional with other parameter or maybe i omitted a configuration of system. Could you tell me where i locate the Solaris code that validate the "string" password with password policy configuration?.