Path: utzoo!attcan!uunet!unh!pss
From: pss@unh.UUCP (Paul S. Sawyer == paul)
Newsgroups: comp.unix.questions
Subject: Re: Need help with password aging
Summary: ATT suggestions sometimes hard to implement on ATT systems...
Message-ID: <1073@unh.UUCP>
Date: 20 Mar 89 20:22:18 GMT
References: <179@camdev.UUCP> <9059@alice.UUCP> <3275@ttrdc.UUCP>
Distribution: na
Organization: unhtel.UUCP == UNH Telecommunications
Lines: 32

In article <3275@ttrdc.UUCP>, levy@ttrdc.UUCP (Daniel R. Levy) writes:
> 
> Toggling can be defeated by storing all past passwords for each user.
> -- 
> Daniel R. Levy             UNIX(R) mail:  att!ttbcad!levy
> AT&T Bell Laboratories
> 5555 West Touhy Avenue     Any opinions expressed in the message above are
> Skokie, Illinois  60077    mine, and not necessarily AT&T's.


OK, assuming this is true, and assuming I have decided to do so, how do
I implement this in my AT&T binary licensed System V, release 2.1.2?  Is 
there a /etc/.passwdrc or such file for setting such an option?  A
tunable system parameter?  ( add only 1/2  B-)  (Yes, I DO know how to
implement password aging, but I see it as Not a Good Thing...)

At some time, in the NEAR future, binary licensees should be able to
get source code for some of the *basic* utilities for which modification
is needed to improve system security, beginning with /bin/login 
and /bin/passwd;  I know that alternatives are available, but I would 
rather start with the "official" vendor supplied programs and take 
responsibility for any changes, than to guess as to whether a third party 
or self-written version of such a program is implemented "right" - we are 
dealing with setuid root programs, after all.  I do not need, want, nor 
can we afford a complete source license...


-- 
= = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = =
Paul S. Sawyer              uunet!unh!unhtel!paul     paul@unhtel.UUCP
UNH Telecommunications
Durham, NH  03824-3523      VOX: 603-862-3262         FAX: 603-862-2030