Context Navigation

libpwquality.xml@ 3619a5b9

Visit:

11.3 12.0 12.1 kea ken/TL2024 ken/inkscape-core-mods ken/tuningfonts lazarus lxqt plabs/newcss plabs/python-mods python3.11 qt5new rahul/power-profiles-daemon renodr/vulkan-addition trunk xry111/llvm18 xry111/xf86-video-removal

Last change on this file since 3619a5b9 was 3619a5b9, checked in by Pierre Labastie <pierre.labastie@…>, 18 months ago

Adjust the number of crypt rounds in PAM files

To match shadow's one.

Property mode set to 100644

File size: 8.4 KB

Rev	Line
[f97d5f6]	1	<?xml version="1.0" encoding="ISO-8859-1"?>
	2	<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
	3	"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
	4	<!ENTITY % general-entities SYSTEM "../../general.ent">
	5	%general-entities;
	6
[3c64e32]	7	<!ENTITY libpwquality-download-http "https://github.com/libpwquality/libpwquality/releases/download/libpwquality-&libpwquality-version;/libpwquality-&libpwquality-version;.tar.bz2">
[f97d5f6]	8	<!ENTITY libpwquality-download-ftp " ">
[1334c9a]	9	<!ENTITY libpwquality-md5sum "1fe43f6641dbf1e1766e2a02cf68a9c3">
[208d4a0c]	10	<!ENTITY libpwquality-size "420 KB">
[6914a417]	11	<!ENTITY libpwquality-buildsize "4.1 MB">
[f97d5f6]	12	<!ENTITY libpwquality-time "less than 0.1 SBU">
	13	]>
	14
	15	<sect1 id="libpwquality" xreflabel="libpwquality-&libpwquality-version;">
	16	<?dbhtml filename="libpwquality.html"?>
	17
	18	<sect1info>
[fda29e4]	19	<date>$Date$</date>
[f97d5f6]	20	</sect1info>
	21
	22	<title>libpwquality-&libpwquality-version;</title>
	23
	24	<indexterm zone="libpwquality">
[183f254]	25	<primary sortas="a-libpwquality">libpwquality</primary>
[f97d5f6]	26	</indexterm>
	27
	28	<sect2 role="package">
[183f254]	29	<title>Introduction to libpwquality</title>
[f97d5f6]	30
	31	<para>
[096ed61]	32	The <application>libpwquality</application> package provides common
[f97d5f6]	33	functions for password quality checking and also scoring them based on
	34	their apparent randomness. The library also provides a function for
[f3429309]	35	generating random passwords with good pronounceability.
[f97d5f6]	36	</para>
	37
[0ddf4e7]	38	&lfs112_checked;
[f97d5f6]	39
	40	<bridgehead renderas="sect3">Package Information</bridgehead>
	41	<itemizedlist spacing="compact">
	42	<listitem>
	43	<para>
	44	Download (HTTP): <ulink url="&libpwquality-download-http;"/>
	45	</para>
	46	</listitem>
	47	<listitem>
	48	<para>
	49	Download (FTP): <ulink url="&libpwquality-download-ftp;"/>
	50	</para>
	51	</listitem>
	52	<listitem>
	53	<para>
	54	Download MD5 sum: &libpwquality-md5sum;
	55	</para>
	56	</listitem>
	57	<listitem>
	58	<para>
	59	Download size: &libpwquality-size;
	60	</para>
	61	</listitem>
	62	<listitem>
	63	<para>
	64	Estimated disk space required: &libpwquality-buildsize;
	65	</para>
	66	</listitem>
	67	<listitem>
	68	<para>
	69	Estimated build time: &libpwquality-time;
	70	</para>
	71	</listitem>
	72	</itemizedlist>
	73
	74	<bridgehead renderas="sect3">libpwquality Dependencies</bridgehead>
	75
[9dc3146]	76	<bridgehead renderas="sect4">Required</bridgehead>
	77	<para role="required">
	78	<xref linkend="cracklib"/>
	79	</para>
	80
[f97d5f6]	81	<bridgehead renderas="sect4">Recommended</bridgehead>
	82	<para role="recommended">
[9dc3146]	83	<xref linkend="linux-pam"/>
[f97d5f6]	84	</para>
[85ac148]	85	<!-- Do not advertise python 2 since python 3 can be used
[2c64887e]	86	<bridgehead renderas="sect4">Optional</bridgehead>
	87	<para role="optional">
	88	<xref linkend="python2"/>
	89	</para>
[85ac148]	90	-->
[f97d5f6]	91	<para condition="html" role="usernotes">User Notes:
	92	<ulink url="&blfs-wiki;/libpwquality"/>
	93	</para>
	94	</sect2>
	95
	96	<sect2 role="installation">
	97	<title>Installation of libpwquality</title>
	98
	99	<para>
	100	Install <application>libpwquality</application> by running the following
	101	commands:
	102	</para>
	103
[e92e7dc]	104	<screen><userinput>./configure --prefix=/usr \
	105	--disable-static \
	106	--with-securedir=/usr/lib/security \
	107	--with-python-binary=python3 &&
[f97d5f6]	108	make</userinput></screen>
	109
	110	<para>
	111	This package does not come with a test suite.
	112	</para>
	113
	114	<para>
	115	Now, as the <systemitem class="username">root</systemitem> user:
	116	</para>
[8558044]	117
[e92e7dc]	118	<screen role="root"><userinput>make install</userinput></screen>
[f97d5f6]	119
	120	</sect2>
	121
[2c64887e]	122	<sect2 role="commands">
	123	<title>Command Explanations</title>
	124
	125	<para>
	126	<parameter>--with-python-binary=python3</parameter>: This parameter gives
	127	the location of the <application>Python</application> binary. The default
	128	is <parameter>python</parameter>, and requires <xref linkend="python2"/>.
	129	</para>
[7e11b83c]	130
[2c64887e]	131	</sect2>
	132
[62066a54]	133	<sect2 role="configuration">
[eecc046]	134	<title>Configuring libpwquality</title>
[62066a54]	135
[7e11b83c]	136	<!--
[62066a54]	137	<para>
[eecc046]	138	<application>libpwquality</application> is intended to be a
[62066a54]	139	functional replacement for the <filename>pam_cracklib.so</filename>
	140	module with additional options. To replace the
	141	<filename>pam_cracklib.so</filename> module with the
	142	<filename>pam_pwquality.so</filename> module, execute the following
	143	commands as the <systemitem class="username">root</systemitem> user:
	144	</para>
[7e11b83c]	145	-->
	146
	147	<para>
	148	<application>libpwquality</application> is intended to be a
	149	functional replacement for the now-obsolete
	150	<filename>pam_cracklib.so</filename> PAM module. To configure the system
	151	to use the <filename>pam_pwquality</filename> module, execute the
	152	following commands as the
	153	<systemitem class="username">root</systemitem> user:
	154	</para>
[62066a54]	155
	156	<screen role="root"><userinput>mv /etc/pam.d/system-password{,.orig} &&
	157	cat > /etc/pam.d/system-password << "EOF"
	158	<literal># Begin /etc/pam.d/system-password
	159
	160	# check new passwords for strength (man pam_pwquality)
	161	password required pam_pwquality.so authtok_type=UNIX retry=1 difok=1 \
	162	minlen=8 dcredit=0 ucredit=0 \
	163	lcredit=0 ocredit=0 minclass=1 \
	164	maxrepeat=0 maxsequence=0 \
	165	maxclassrepeat=0 geoscheck=0 \
	166	dictcheck=1 usercheck=1 \
	167	enforcing=1 badwords="" \
[e92e7dc]	168	dictpath=/usr/lib/cracklib/pw_dict
[62066a54]	169	# use sha512 hash for encryption, use shadow, and use the
	170	# authentication token (chosen password) set by pam_pwquality
[3619a5b9]	171	# above (or any previous modules). Also set the number of crypt rounds
	172	# to the value used in shadow.
	173	password required pam_unix.so sha512 shadow use_authtok \
	174	rounds=5000000
[62066a54]	175
	176	# End /etc/pam.d/system-password</literal>
	177	EOF
	178	</userinput></screen>
	179
	180	</sect2>
[8558044]	181
[f97d5f6]	182	<sect2 role="content">
	183	<title>Contents</title>
	184
	185	<segmentedlist>
	186	<segtitle>Installed Programs</segtitle>
	187	<segtitle>Installed Libraries</segtitle>
	188	<segtitle>Installed Directories</segtitle>
	189
	190	<seglistitem>
	191	<seg>
	192	pwscore and pwmake
	193	</seg>
	194	<seg>
	195	pam_pwquality.so and libpwquality.so
	196	</seg>
	197	<seg>
[651c7ebf]	198	None
	199	<!-- /etc/security was installed by Linux-PAM -->
[f97d5f6]	200	</seg>
	201	</seglistitem>
	202	</segmentedlist>
[183f254]	203
[f97d5f6]	204	<variablelist>
	205	<bridgehead renderas="sect3">Short Descriptions</bridgehead>
	206	<?dbfo list-presentation="list"?>
	207	<?dbhtml list-presentation="table"?>
	208
[183f254]	209	<varlistentry id="pwmake">
	210	<term><command>pwmake</command></term>
	211	<listitem>
	212	<para>
	213	is a simple configurable tool for generating random
[4c24eb0a]	214	and relatively easily pronounceable passwords
[183f254]	215	</para>
	216	<indexterm zone="libpwquality pwmake">
	217	<primary sortas="b-pwmake">pwmake</primary>
	218	</indexterm>
	219	</listitem>
	220	</varlistentry>
	221
	222	<varlistentry id="pwscore">
	223	<term><command>pwscore</command></term>
	224	<listitem>
	225	<para>
[4c24eb0a]	226	is a simple tool for checking quality of a password
[183f254]	227	</para>
	228	<indexterm zone="libpwquality pwscore">
	229	<primary sortas="b-pwscore">pwscore</primary>
	230	</indexterm>
	231	</listitem>
	232	</varlistentry>
	233
	234	<varlistentry id="libpwquality-lib">
	235	<term><filename class="libraryfile">libpwquality.so</filename></term>
	236	<listitem>
	237	<para>
[4c24eb0a]	238	contains API functions for checking the password quality
[183f254]	239	</para>
	240	<indexterm zone="libpwquality libpwquality-lib">
	241	<primary sortas="c-libpwquality">libpwquality.so</primary>
	242	</indexterm>
	243	</listitem>
	244	</varlistentry>
[f97d5f6]	245
[183f254]	246	<varlistentry id="pam_pwquality">
	247	<term><filename class="libraryfile">pam_pwquality.so</filename></term>
[f97d5f6]	248	<listitem>
[183f254]	249	<para>
	250	is a <application>Linux PAM</application> module used to perform
[4c24eb0a]	251	password quality checking
[183f254]	252	</para>
	253	<indexterm zone="libpwquality pam_pwquality">
	254	<primary sortas="c-pam_pwquality">pam_pwquality.so</primary>
[f97d5f6]	255	</indexterm>
	256	</listitem>
	257	</varlistentry>
	258
	259	</variablelist>
[183f254]	260
[f97d5f6]	261	</sect2>
	262
	263	</sect1>

Note: See TracBrowser for help on using the repository browser.

Context Navigation

source: postlfs/security/libpwquality.xml@ 3619a5b9

Download in other formats: