Mailinglist Archive: opensuse-security (465 mails)

< Previous Next >
Re: [suse-security] initial substring matches passwd when su'ing to root
  • From: Corvin Russell <corvinr@xxxxxxxxxxxx>
  • Date: Mon, 17 Dec 2001 03:59:15 -0500
  • Message-id: <20011217035915.A5007@xxxxxxxxxxxxxxxxxxxxxx>
On Mon, Dec 17, 2001 at 09:34:54AM +0100, Peer Stefan wrote:
>
> If you want to enable longer passwords (more than 8 characters) you have to
> edit /etc/login.defs.
> There should be an entry
> PASS_MIN_LEN 5
> and another one
> PASS_MAX_LEN 8
> which means, any password with 5 or more characters are ok and only the
> first 8 characters are passed to crypt(). You can set the PASS_MAX_LEN to
> any value up to 255.
> An easier way to achieve this is to use the harden_suse script, which asks
> you about the length of passwords.

Hi Stefan,

Thanks for the reply. This is the value in my /etc/login.defs:

PASS_MAX_LEN "40"


Corvin

--
Corvin Russell <corvinr@xxxxxxxxxxxx>


< Previous Next >
Follow Ups
References