linux - pam_cracklib not seeing old password -


i have enabled linux pam (version 1.1.4) , cracklib (version 2.8.22) , things working fine. password complexity specified via pam configuration file being adhered (upper/lower case, digits, etc) 'difok' not being adhered to. no matter set option to, pam_cracklib let password through (provided meets other complexity requirements i've specified).

long story short had modify linux pam cracklib add debug , found out pam_cracklib fails able retrieve old password. thinks string null naturally there nothing compare new password to.

yet when user changes own password, correctly authenticating current (what become old) password pam_unix correctly seeing old password. time gets down pam_cracklib line of pam configuration password appears have been wiped out somehow.

i'm pulling hair out trying figure out how/where/why happening.

here relevant password lines in pam configuration file:

password        requisite       pam_cracklib.so debug   reject_username\     minlen=6        ucredit=-1      lcredit=-1      difok=4 maxrepeat=2 password        required        pam_unix.so     debug   md5     shadow

by way: being done programatically through front end application. not can done interactively in environment.

does have ideas on this?

hashed versions of old passwords stored in

/etc/security/opasswd

so check perms on file should read:

-rw-------.

also (and here crux of issue think) have ad remember field pam_unix module:

pam_unix.so try_first_pass remember=3 use_authtok null debug   md5     shadow

Comments

Post a Comment

Popular posts from this blog

php - Calling a template part from a post -

i include iframe within post in wordpress. located inside content of post, meaning cannot in post template file, otherwise either before or after. i'd add facebook plugin within posts: <div id="socialwrap"><div class="fb-like" data-href="http://onlinearizonahomes.info" data-send="true" data-width="450" data-show-faces="true" data-font="arial"></div></div> i thinking of calling template part within post <?php get_template_part( 'social' ); ?> cannot use php within post without plugin (i'd avoid using plugin this). an alternative using javascript create html in post, seems unnecessary use of javascript. what best way add html within wordpress post? you can use shortcode. add functions.php function cudjex_fbshare( $atts, $content = null ) { global $post; $link = get_permalink($post->id); return '<div id="socialwrap...
Read more

Firefox SVG shape not printing when it has stroke -

Image
i having issue svg shapes have stroke , trying them print in firefox. this simplest example: <svg xmlns="http://www.w3.org/2000/svg" version="1.1" xmlns:xlink="http://www.w3.org/1999/xlink"> <rect x="0" y="0" rx="15" ry="15" width="300" height="400" style="stroke:black;stroke-width:5;" fill="black" /> <circle id="firstcircle" cx="50" cy="50" r="30" stroke="black" stroke-width="2" fill="white" style="opacity:0.75;"/> <circle id="secondcircle" cx="50" cy="150" r="30" fill="white" style="opacity:0.75;"/> </svg> when try , print first shape 1 of 2 things: it not show @ all it shows off center in bounding box. the second shape no stroke shows expected, expected. when displaying on scre...
Read more

How to mention the localhost in android -

i trying call localhost in android application. unfortunately not possible used several methods emulator local host http://10.0.2.2/android/dbconnection.php and network ip address http://192.168.1.xx/android/dbconnection.php also http://localhost:8080/android/dbconnection.php but nothing connected localhost. purpose refer stackoverflow answers not working i facing same problem when worked on localhost. referred stackoverflow answer got solution create new emulator works fine in new emulator.
Read more