Need to clarify on what's "Yes" esp for the following 2 :
Q2:
with min & maxage=0, for these 2 infra users, do these settings override the system default's minage=1 & maxage=8 ?
So in the case of our infrauser1 & 2, our setting of 0 is not adhering to best practice?
Q3:
For oracle account, what's the best/secure practice out there? min & maxage=0 ?
So it should be 1 & 7 respectively according to our security policy?
sunhux
ASKER
Miss 1 item which was in the subject of the 1st posting:
In the same /etc/security/user,
default:
rlogin = true
Shouldn't rlogin be set to 'false' as rlogin doesn't require password & keys ?
Q2:
with min & maxage=0, for these 2 infra users, do these settings override the system default's minage=1 & maxage=8 ?
So in the case of our infrauser1 & 2, our setting of 0 is not adhering to best practice?
Q3:
For oracle account, what's the best/secure practice out there? min & maxage=0 ?
So it should be 1 & 7 respectively according to our security policy?