Solved

15 Character Passwords on Unix/Solaris.

Posted on 2007-03-27
10
1,480 Views
Last Modified: 2013-12-04
Is there any functionality issues with a 15 character password on UNIX/Solaris machines – or those that communicate with non UNIX/Solaris machines?
0
Comment
Question by:jbowlin
10 Comments
 
LVL 45

Expert Comment

by:Kdo
ID: 18801500
Hello jbowlin,

If you're staying within the unix realm, a 15 character password shouldn't be an issue.  (Though that sounds like overkill to me.....)

Some applications, particularly some IBM products, require shorter passwords.


Good Luck,
Kent
0
 
LVL 48

Expert Comment

by:Tintin
ID: 18804433
By default Solaris (and most other Unix flavours) will only recognise the first 8 characters of a password.

So if you set your password to

abcdefgh123

You could type in

acbdefgh38udsfkhsfksfu

or

abcdefgh

and your password would be accepted.

You can increase the maximum length of passwords on Solaris =>9 systems to 255 characters, by editing /etc/security/policy.conf and set

CRYPT_ALGORITHMS_ALLOW=1,2a,md5
CRYPT_ALGORITHMS_DEPRECATE=__unix__
CRYPT_DEFAULT=1
0
 
LVL 38

Expert Comment

by:yuzh
ID: 18805101
For Solaris you can edit /etc/default/passwd file to have longer password length
PASSLENGTH=x

But keep in mind, many application has a limit to 8 char for
password, eg the old Solstice adm suit for NIS+ etc.
0
 

Author Comment

by:jbowlin
ID: 18810110
This is for Solaris 8.
It is a mandated by a Government Agency no choice in the matter.
0
Free camera licenses with purchase of My Cloud NAS

Milestone Arcus software is compatible with thousands of industry-leading cameras for added flexibility. Upon installation on your My Cloud NAS, you will receive two (2) camera licenses already enabled in the software. And for a limited time, get additional camera licenses FREE.

 
LVL 48

Expert Comment

by:Tintin
ID: 18812201
With Solaris 8, you are stuck with a maximum recognised password length of 8.
0
 
LVL 38

Expert Comment

by:yuzh
ID: 18813134
You can set:
PASSLENGTH=15
to require passwords to be a minimum of 15 charts (if you are using /etc/passwd /etc/shadow files) but soem other app
might not like it.  (It can become an app issure, not the OS issue).
0
 
LVL 48

Accepted Solution

by:
Tintin earned 500 total points
ID: 18813268
yuzh.

Setting PASSLENGTH to 15 is pretty pointless when the last 7 characters of the password are going to be ignored.
0
 
LVL 14

Expert Comment

by:chris_calabrese
ID: 19076015
BTW this was fixed in Solaris 10
0
 
LVL 48

Expert Comment

by:Tintin
ID: 19081940
Chris.

Wasn't really "fixed" in Solaris 10.  Solaris =>9 has the option to set MD5 passwords (as used on BSD/Linux) in /etc/security/policy.conf, which has a maximum password length of 255.

Setting PASSLENGTH without changing this setting, still won't make any difference.
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Can Viruses spread while transferring Binary data with Winsock 2 66
Ransome Ware Question 10 138
Remote Change Dates on AIX Automation 7 51
Is this error real? 2 48
This is a guide to the following problem (not exclusive but here) on Windows: Users need our support and we supporters often use global administrative accounts to do this. Using these accounts safely is a real challenge. Any admin who takes se…
Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now