diff options
Diffstat (limited to 'modules/pam_pwhistory/README')
| -rw-r--r-- | modules/pam_pwhistory/README | 26 |
1 files changed, 20 insertions, 6 deletions
diff --git a/modules/pam_pwhistory/README b/modules/pam_pwhistory/README index 1634249b..b4868767 100644 --- a/modules/pam_pwhistory/README +++ b/modules/pam_pwhistory/README @@ -23,7 +23,7 @@ use_authtok When password changing enforce the module to use the new password provided by a previously stacked password module (this is used in the example of the - stacking of the pam_cracklib module documented below). + stacking of the pam_passwdqc module documented below). enforce_for_root @@ -31,9 +31,9 @@ enforce_for_root remember=N - The last N passwords for each user are saved in /etc/security/opasswd. The - default is 10. Value of 0 makes the module to keep the existing contents of - the opasswd file unchanged. + The last N passwords for each user are saved. The default is 10. Value of 0 + makes the module to keep the existing contents of the opasswd file + unchanged. retry=N @@ -43,6 +43,20 @@ authtok_type=STRING See pam_get_authtok(3) for more details. +file=/path/filename + + Store password history in file /path/filename rather than the default + location. The default location is /etc/security/opasswd. + +conf=/path/to/config-file + + Use another configuration file instead of the default /etc/security/ + pwhistory.conf. + +The options for configuring the module behavior are described in the +pwhistory.conf(5) manual page. The options specified on the module command line +override the values from the configuration file. + EXAMPLES An example password section would be: @@ -52,10 +66,10 @@ password required pam_pwhistory.so password required pam_unix.so use_authtok -In combination with pam_cracklib: +In combination with pam_passwdqc: #%PAM-1.0 -password required pam_cracklib.so retry=3 +password required pam_passwdqc.so config=/etc/passwdqc.conf password required pam_pwhistory.so use_authtok password required pam_unix.so use_authtok |