Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 27 Oct 2014 16:18:23 -0400
From: Dave Kalaluhi <>
Subject: passwdqc min= and enforce= should be quick questions

So on some newer systems we are using passwdqc via pam.d.

The (not actual) settings are:
min=5,5,5,5,5 similar=deny enforce=everyone

Based on the man pages: with the above min settings, a password like
passw should work. (unless I'm reading the man pages wrong).
pam/passwdqc doesn't allow that, and I'm assuming that's because of
the enforce=everyone directive. My question is, HOW passwdqc enforces
passw is NOT a strong password.

Thanks in advance,

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.