unix security audit

I need to know the Solaris / AIX / redhat file-setting that enforces:
Passwords must be at least 7 char long
Passwords must be alpah numeric.
The new password must not match any of the last 4 passwords
Account lockout after 6 attempts
Does the account auto unlock after so many minutes ?
Idle time in ssh is 15 minutes until it locks out your ssh sesson.

thank you





TIMFOX123Asked:
Who is Participating?
 
prerakgConnect With a Mentor Commented:
In solaris OS this can be found under

under /etc/default
vi passwd

MAXWEEKS=8
MINWEEKS=
PASSLENGTH=8
WARNWEEKS=6
0
 
woolmilkporcConnect With a Mentor Commented:
AIX:

To list values:

lssec -f /etc/security/user -s default -a minlen -a minalpha -a minother -a histsize -a loginretries

There is no auto unlock in AIX. An ssh timeout does not exist either, see below how to emulate it.

To set the default values to what you desire:

chsec -f /etc/security/user -s default -a minlen=7 -a minalpha=1 -a minother=1 -a histsize=4 -a loginretries=6

Set values for individual users with:

chuser minlen=7 minalpha=1 minother=1 histsize=4 loginretries=6 userid

Emulate a 15 minute ssh timeout with:

ClientAliveCountMax 0
ClientAliveInterval 900

in /etc/ssh/sshd_config

wmp



0
 
TIMFOX123Author Commented:
thx,  

still a lot of things I still need :)  
0
 
woolmilkporcConnect With a Mentor Commented:
For RedHat check

/etc/pam.d/system-auth

wmp
0
 
TIMFOX123Author Commented:
thx
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.