12 Jul
2012
12 Jul
'12
1:40 a.m.
Jason White <jason@jasonjgw.net> wrote:
James Harper <james.harper@bendigoit.com.au> wrote:
It's been a while since I installed a Debian machine via any other means than debootstrap... do any flavours of Linux these days take any steps to ensure you choose a sensible password? A computer without a firewall is only as secure as the user that set it up, regardless of the OS.
I think there are checks performed on passwords entered by users other than root, but I'm not sure.
I can confirm that checks are performed: /etc/pam.d/common-password: password [success=1 default=ignore] pam_unix.so obscure sha512 The obscure option performs the checks listed in the pam_unix(8) manual page.