[389-users] Password policy: Dictionary of unauthorized tokens

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 07/27/2009 01:55 PM, Randall Wood wrote:
> The RedHat/FDS documentation suggests that FDS can use a dictionary of
> unauthorized tokens in a password policy, although it does not seem
> configurable.
>
> Is there a dictionary that FDS uses, and is it possible to add words to
> it if so desired?
>    
That description is not really correct.  There is a check that ensures 
that values used in common attribtues of the user entry can not be 
present in the password.  This prevents things like using your uid or cn 
in your password.  The values are broken into tokens of a configurable 
length and then compared to the userPassword value.
[Index of Archives]     [Fedora User Discussion]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Yosemite Photos]     [Linux Apps]     [Maemo Users]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux