commit: 1b7c7f7678a6402a0b0aec80b3883fd98516be4e
Author: Mikle Kolyada <zlogene <AT> gentoo <DOT> org>
AuthorDate: Wed Sep 9 16:32:10 2020 +0000
Commit: Mikle Kolyada <zlogene <AT> gentoo <DOT> org>
CommitDate: Wed Sep 9 16:32:10 2020 +0000
URL: https://gitweb.gentoo.org/proj/pambase.git/commit/?id=1b7c7f76
system-auth: switch password modules to configs
* pam_passwdqc.so can by managed by the /etc/security/passwdqc.conf
* pam_pwquality.so can be managed by the /etc/security/pwquality.conf
Both allow users to create their own password polices without touching
files in the /etc/pam.d directory
Signed-off-by: Mikle Kolyada <zlogene <AT> gentoo.org>
templates/system-auth.tpl | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/templates/system-auth.tpl b/templates/system-auth.tpl
index 69cc472..0381e66 100644
--- a/templates/system-auth.tpl
+++ b/templates/system-auth.tpl
@@ -25,11 +25,11 @@ account required pam_faillock.so
{% endif %}
{% if passwdqc %}
-password required pam_passwdqc.so min=8,8,8,8,8 retry=3
+password required pam_passwdqc.so
config=/etc/security/passwdqc.conf
{% endif %}
{% if pwquality %}
-password required pam_pwquality.so retry=3 minlen=8 lcredit=2
ucredit=2 dcredit=2 ocredit=2 difok=3 enforce_for_root
+password required pam_pwquality.so
{% endif %}
{% if krb5 %}
