bab9bb6b69
Create new directories:
ceph
config
config-files
filesystem
kernel
kernel/kernel-modules
ldap
logging
strorage-drivers
tools
utilities
virt
Retire directories:
connectivity
core
devtools
support
extended
Delete two packages:
tgt
irqbalance
Relocated packages:
base/
dhcp
initscripts
libevent
lighttpd
linuxptp
memcached
net-snmp
novnc
ntp
openssh
pam
procps
sanlock
shadow
sudo
systemd
util-linux
vim
watchdog
ceph/
python-cephclient
config/
facter
puppet-4.8.2
puppet-modules
filesystem/
e2fsprogs
nfs-utils
nfscheck
kernel/
kernel-std
kernel-rt
kernel/kernel-modules/
mlnx-ofa_kernel
ldap/
nss-pam-ldapd
openldap
logging/
syslog-ng
logrotate
networking/
lldpd
iproute
mellanox
python-ryu
mlx4-config
python/
python-2.7.5
python-django
python-gunicorn
python-setuptools
python-smartpm
python-voluptuous
security/
shim-signed
shim-unsigned
tboot
strorage-drivers/
python-3parclient
python-lefthandclient
virt/
cloud-init
libvirt
libvirt-python
qemu
tools/
storage-topology
vm-topology
utilities/
tis-extensions
namespace-utils
nova-utils
update-motd
Change-Id: I37ade764d873c701b35eac5881eb40412ba64a86
Story: 2002801
Task: 22687
Signed-off-by: Scott Little <scott.little@windriver.com>
39 lines
1.8 KiB
Plaintext
Executable File
39 lines
1.8 KiB
Plaintext
Executable File
#
|
|
# /etc/pam.d/common-password - password-related modules common to all services
|
|
#
|
|
# This file is included from other service-specific PAM config files,
|
|
# and should contain a list of modules that define the services to be
|
|
# used to change user passwords. The default is pam_unix.
|
|
|
|
# Explanation of pam_unix options:
|
|
#
|
|
# The "sha512" option enables salted SHA512 passwords. Without this option,
|
|
# the default is Unix crypt. Prior releases used the option "md5".
|
|
#
|
|
# The "obscure" option replaces the old `OBSCURE_CHECKS_ENAB' option in
|
|
# login.defs.
|
|
#
|
|
# See the pam_unix manpage for other options.
|
|
|
|
# here are the per-package modules (the "Primary" block)
|
|
|
|
################## Titanium Cloud Password Rules #######################
|
|
## Enforce a password containing atleast 1 lower case, 1 upper case, #
|
|
## 1 digit and 1 special character. Such a password will have a #
|
|
## minimum length of 7 characters. A user may not re-use the last most #
|
|
## recent password and every password must differ from its previous #
|
|
## one by atleast 3 characters #
|
|
## - Added enforce_for_root for pam_pwquality.so #
|
|
########################################################################
|
|
|
|
password required pam_pwquality.so try_first_pass retry=3 authtok_type= difok=3 minlen=7 lcredit=-1 ucredit=-1 ocredit=-1 dcredit=-1 enforce_for_root debug
|
|
password required pam_pwhistory.so use_authtok enforce_for_root remember=2 retry=3 debug
|
|
|
|
password sufficient pam_unix.so sha512 use_authtok debug
|
|
password [success=done authtok_err=die perm_denied=die default=ignore] pam_ldap.so use_authtok debug
|
|
|
|
|
|
|
|
# If we got this far then its clearly a DENY
|
|
password requisite pam_deny.so
|