Bug #10587: /etc/default/passwd seems outdates - illumos gate - illumos

Actions

Copy link

Bug #10587

open

/etc/default/passwd seems outdates

Added by Hubert Garavel over 4 years ago. Updated over 4 years ago.

Status:

New

Priority:

Normal

Assignee:

Category:

Start date:

2019-03-25

Due date:

% Done:

Estimated time:

Difficulty:

Medium

Tags:

needs-triage

Gerrit CR:

External Bug:

Description

The settings of /etc/default/passwd need to be updated to face modern security challenges.

For instance,
PASSLENGTH=6
is much too weak. One should have at least
PASSLENGTH=10
or even
PASSLENGTH=12
as recommended in
https://www.networkworld.com/article/2726564/how-to-enforce-password-complexity-on-solaris.html

All the current definitions in /etc/default/passwd should be made strengthened
to make OpenIndiana secure by default.

Actions

Copy link

Updated by Michal Nowak over 4 years ago

Project changed from OpenIndiana Distribution to illumos gate

This is illumos stuff. Perhaps illumos developers have thoughts in this area? Linux distributions did changes to password policies in last couple of years (e.g. Fedora refuses too simple passwords).

In general OpenIndiana does not diverge from illumos-gate.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

illumos gate

Custom queries

Bug #10587

/etc/default/passwd seems outdates

Updated by Michal Nowak over 4 years ago