Re: [389-users] Password policy: Dictionary of unauthorized tokens

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 07/27/2009 01:55 PM, Randall Wood wrote:

The RedHat/FDS documentation suggests that FDS can use a dictionary of
unauthorized tokens in a password policy, although it does not seem
configurable.

Is there a dictionary that FDS uses, and is it possible to add words to
it if so desired?
That description is not really correct. There is a check that ensures that values used in common attribtues of the user entry can not be present in the password. This prevents things like using your uid or cn in your password. The values are broken into tokens of a configurable length and then compared to the userPassword value. 

--
389 users mailing list
389-users@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-directory-users
[Index of Archives]     [Fedora Directory Users]     [Fedora Directory Devel]     [Fedora Announce]     [Fedora Legacy Announce]     [Kernel]     [Fedora Legacy]     [Share Photos]     [Fedora Desktop]     [PAM]     [Red Hat Watch]     [Red Hat Development]     [Big List of Linux Books]     [Gimp]     [Yosemite News]

  Powered by Linux