UNIX Password Security - Unix

This is a discussion on UNIX Password Security - Unix ; I would like to know how I can force end users to develop complex passwords for my AIX system. I have looked at the password file attributes, but the functionality is not there. Thanks in advance....

+ Reply to Thread
Results 1 to 3 of 3

Thread: UNIX Password Security

  1. UNIX Password Security

    I would like to know how I can force end users to develop complex passwords
    for my AIX system. I have looked at the password file attributes, but the
    functionality is not there.

    Thanks in advance.



  2. Re: UNIX Password Security

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    cameron wrote:
    > I would like to know how I can force end users to develop complex passwords
    > for my AIX system. I have looked at the password file attributes, but the
    > functionality is not there.


    Please define 'complex passwords'

    A quick Google search using the terms "aix password policy" brought up a
    number of relevant sites, including this one ->
    http://www.securitydocs.com/library/3136/2

    I don't know AIX, but I do know that it has a number of tuning "knobs"
    to permit you to tighten up password policy.

    Just a word of warning, though. You don't want to wind your password
    policy too tight; the more complex you make your password requirements,
    the more likely that end-users will not be able to easily memorize their
    passwords, and (1) your sysadm calls will go up ("I can't remember my
    password. Can you reset it for me?") and (2) your users will likely
    write their passwords down, making them less secure than a less complex
    password that was memorized.

    - --

    Lew Pitcher, IT Specialist, Enterprise Data Systems
    Enterprise Technology Solutions, TD Bank Financial Group

    (Opinions expressed here are my own, not my employer's)
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.2.4 (MingW32)

    iD8DBQFC4UDwagVFX4UWr64RAs2AAKCl+WTWhcIMl5/rFooQlharmUrFKACfZeUT
    Cn+j+HUeRTNCL7KoFB26M+E=
    =+m71
    -----END PGP SIGNATURE-----

  3. Re: UNIX Password Security

    If this is a system where the users have a choice of using it or not (ie
    website) they won't use it.

    If this is a site they MUST use (ie buriness system at work) they'll write
    down the password and tape it to the bottom of their keyboard.

    "cameron" wrote in message
    news:42e13c21$0$916$8fcfb975@news.wanadoo.fr...
    > I would like to know how I can force end users to develop complex

    passwords
    > for my AIX system. I have looked at the password file attributes, but the
    > functionality is not there.
    >
    > Thanks in advance.
    >
    >




+ Reply to Thread