°Ô½Ã¹° 20°Ç
   
[suse] pam °ü·Ã Æнº¿öµå º¯°æ °ü·Ã
±Û¾´ÀÌ : theko ³¯Â¥ : 2014-02-05 (¼ö) 09:41 Á¶È¸ : 7433

n  º¸¾È Àû¿ë »çÇ× ÀϺÎ

 

# cat /etc/pam.d/common-password   è ¾Æ·¡ 3line Ãß°¡

#password        requisite       pam_pwcheck.so  nullok cracklib

#password        required        pam_unix2.so    use_authtok nullok


password        required        pam_pwhistory.so        use_authtok remember=8   

##Áö³­ 8¹øÀÇ PW ±â¾ïÇÏ°í µ¿ÀÏÇÑ°Ç ¾ÈµÊ

password        requisite       pam_cracklib.so minlen=8 ucredit=-1 dcredit=-1 ocredit=-1

# ´ë¹®ÀÚ + ¼ýÀÚ + Ư¼ö¹®ÀÚ ÃÖ¼Ò1°³ ÀÌ»ó = ÃÑ 8°³µÇ¾ßÇÔ

password        required        pam_unix2.so    use_authtok nullok

 

# cat /etc/pam.d/common-auth  è ¾Æ·¡ 1line Ãß°¡

auth    required        pam_env.so

auth    required        pam_unix2.so

auth required pam_tally.so deny=5 onerr=fail per_user no_lock_time

# 5¹ø ½ÃµµÈÄ ¶ôÀ¸·Î Àá±è

# cat /etc/pam.d/common-account  è ¾Æ·¡ 1line Ãß°¡

account required        pam_unix2.so

account required pam_tally.so


theko 2014-02-05 (¼ö) 09:41

2. /etc/pam.d/common-password ¼³Á¤ Àû¿ëÇϱâ

- ¾Æ·¡¿Í °°ÀÌ ¸í·É¾î¸¦ Ä¡½Ã¸é µË´Ï´Ù.

# pam-config --add --cracklib --cracklib-minlen=8 --cracklib-dcredit=-1   --cracklib-ocredit=-1 --cracklib-ucredit=-1

# pam-config --add --pwhistory --pwhistory-use_authtok --pwhistory-remember=8

À̸§ Æнº¿öµå
ºñ¹Ð±Û (üũÇÏ¸é ±Û¾´À̸¸ ³»¿ëÀ» È®ÀÎÇÒ ¼ö ÀÖ½À´Ï´Ù.)
¿ÞÂÊÀÇ ±ÛÀÚ¸¦ ÀÔ·ÂÇϼ¼¿ä.
   

miwit.com sir.co.kr DNS Powered by DNSEver.com DNS Powered by DNSEver.com