Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / meta-phosphor / bb70abc065a7eeb3206460ad20041bc132dab784
commitbb70abc065a7eeb3206460ad20041bc132dab784[log] [tgz]
authorRichard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>Mon Jul 16 01:01:32 2018 +0530
committerBrad Bishop <bradleyb@fuzziesquirrel.com>Wed Oct 17 12:49:57 2018 +0000
tree354083c46b19b3071778fa03935b653b0b9446a7
parentd32b6818513b069ad59fa60a5301d5a52ebf4d2f [diff]
Enforce password security through pam

Add suitable pam modules in place which will enforce
password security
1. pam_cracklib is added with minimum length of 8. Length
greater than 8 can be configured through D-Bus interface.
2. pam_pwhistory is added to remember old password. Disabled
by default. Can be enabled through D-Bus interface
3. pam-tally2 used to lock out account after failed attempts.
Disabled by deault. Can be enabled through D-Bus interface

Note: pam_cracklib will do password verification one extra time,
hence with this fix, any password change will request,
Retype new password for 2 times.

Change-Id: I3deb2f9b729fff1f44f0e7df517a6cf04b1d2bfd
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
4 files changed
tree: 354083c46b19b3071778fa03935b653b0b9446a7
  1. aspeed-layer/
  2. classes/
  3. conf/
  4. nuvoton-layer/
  5. recipes-connectivity/
  6. recipes-core/
  7. recipes-devtools/
  8. recipes-extended/
  9. recipes-phosphor/
  10. recipes-support/
  11. recipes-textproc/
  12. COPYING.apache-2.0
  13. COPYING.MIT
  14. LICENSE
  15. MAINTAINERS
  16. README.md
  17. recipes.txt
README.md

OpenBMC

meta-phosphor is the OpenBMC layer. This layer should be included for all OpenBMC systems. The OpenBMC layer contains content which is shared between all OpenBMC systems.