[clug] Making shadow passwords compulsory

Sam Couter sam at couter.dropbear.id.au
Tue Sep 9 16:40:45 EST 2003

Michael.James at csiro.au <Michael.James at csiro.au> wrote:
> THIS passwd just bungs the encrypted string into /etc/passwd! Argh!
> How can I suppress this obnoxious obsequiousness on the part of passwd?

Does 'passwd' use pam on that system?

In /etc/pam.d/passwd (or wherever):
password  required  pam_deny.so

This assumes that you use some external mechanism to change the krb5
passwords, and don't want users to be able to use the 'passwd' program
at all.
Sam "Eddie" Couter  |  mailto:sam at couter.dropbear.id.au
Debian Developer    |  mailto:eddie at debian.org
                    |  jabber:sam at teknohaus.dyndns.org
OpenPGP fingerprint:  A46B 9BB5 3148 7BEA 1F05  5BD5 8530 03AE DE89 C75C
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.samba.org/archive/linux/attachments/20030909/12919fc2/attachment.bin

More information about the linux mailing list