While working on the 'passwd' command on Linux, I referred to the pam_cracklib man page.I found out that the password 'strength check' works in the following manner:... [by tanugupta5]
I have an fc17 system and wanted to configure password strength capabilities. However, it appears that pam_cracklib isn't implemented in /etc/pam.d/passwd.
Do I need to modify this file as per the pam_cracklib man page?
It says that it can enforce changes such as the number of differences from the old password. How does it know what the old password is?
We would like to prevent users from using words such as the organisation name or their username as part of the password.