Limit Password Reuse

Posted: August 7, 2013 in Uncategorized

As a System Administrator we can restrict normal user i.e non root user from re-using their recent passwords. This can be done using the remember
option for the PAM module. If suppose you don’t want user from re-using last 3 password then append remember=3 to the password line which uses the module in the file /etc/pam.d/system-auth Please see below output of my /etc/pam.d/system-auth file

[root@afzalkhan ~]# cat /etc/pam.d/system-auth |grep remember
password sufficient md5 shadow nullok try_first_pass use_authtok remember=3
[root@afzalkhan ~]#

All old passwords are stored in the /etc/security/opasswd file

[root@afzalkhan ~]# cat /etc/security/opasswd
[root@afzalkhan ~]#


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s