From owner-freebsd-questions  Tue Jan 18 16:40: 3 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from mail.medsp.com (medsp.com [209.203.250.120])
	by hub.freebsd.org (Postfix) with ESMTP id F0BC914A2B
	for <questions@freebsd.org>; Tue, 18 Jan 2000 16:39:54 -0800 (PST)
	(envelope-from scott@mail.medsp.com)
Received: (from scott@localhost)
	by mail.medsp.com (8.9.3/8.9.3) id QAA82045
	for questions@freebsd.org; Tue, 18 Jan 2000 16:42:49 -0800 (PST)
	(envelope-from scott)
Date: Tue, 18 Jan 2000 16:42:49 -0800
From: Scott Gasch <scott@mail.medsp.com>
To: questions@freebsd.org
Subject: reuse of old passwords
Message-ID: <20000118164249.A82027@www.medsp.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0pre2i
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


Hello,

Is it possible currently to enforce password rules like NT does when
it comes to reuse of old passwords: A user is not allowed to re-use
the same password or any of the previous n (=10?) old passwords.

Currently when passwords must be changed in BSD it seems that passwd
does not care if you reuse the same password that you had!  If this is
not currently supported, does anyone have suggestions about the right
way to implement this?  I am considering saving each user's n last
encrypted passwords in a root-read-only database under /etc and
testing new passwords against old in passwd.

Thanks,
Scott


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message