Re: Password History

From: Nico Kadel-Garcia <nkadel@xxxxxxxxx>
Date: Sat, 16 Aug 2008 08:16:49 +0100

Jean-Pierre Radley wrote:

Joe Chasan typed (on Fri, Aug 15, 2008 at 06:56:03PM -0400):
| On Fri, Aug 15, 2008 at 05:58:51PM -0400, Jean-Pierre Radley wrote:
| > Nico Kadel-Garcia typed (on Fri, Aug 15, 2008 at 10:05:19PM +0100):
| > > Joe Chasan wrote:
| > >> Any easy way to implement password history - e.g. user can't re-use last X
| > >> passwords, where X is a configurable parameter?
| > >>
| > >> After an IT audit, auditors were surprised this was not implemented in
| > >> SCO OpenServer (6.0/mp2)
| > >
| > > If you want thorough such control, upgrade to an OS smart enough to use | > > Kerberos (which I'm not sure SCO has ever published), or use a Kerberized | > > master password server with an NIS back end for SCO clients. Oddly, | > > Solaris, Linux, and Active Directory from Windows can all do this. And | > > oddly, Solaris's NIS requires real hand-massaging to prevent from causing | > > system problems, even thogh Sun apparently invented it.
| > | > OSR 6.0.0 includes Kerberos.
| | then how would one implement this part of it?

Well, I never done it so I can't help you. Looks like you have (more
than enough) reading for weekends from now to Columbus Day at:

http://web.mit.edu/Kerberos/krb5-1.6/#documentation

But, while those documents are wonderful, they don't explain how to manage the settings on particular operating systems. Active Directory uses Kerberos as well, but this document will not help you find the settings *there*.

I'm working with OSR 5.0.6: I assume that 'scoadmin' has such settings available in its GUI, and I'd avoid resetting such things manually in the text files to avoid confusion and discrepancy between GUI managed components.
.

Follow-Ups:
- Re: Password History
  - From: Joe Chasan

References:
- Password History
  - From: Joe Chasan
- Re: Password History
  - From: Nico Kadel-Garcia
- Re: Password History
  - From: Jean-Pierre Radley
- Re: Password History
  - From: Joe Chasan
- Re: Password History
  - From: Jean-Pierre Radley

Prev by Date: Re: Password History
Next by Date: Re: Haven't seen this lp problem before
Previous by thread: Re: Password History
Next by thread: Re: Password History
Index(es):
- Date
- Thread

Relevant Pages

RE: Browser lost its memory
... All the settings were as they should be (i.e. just like you recommended I ... "nass" wrote: ... User names and passwords on forms ... Click OK to confirm your changes and quit the window. ...
(microsoft.public.windows.inetexplorer.ie6.browser)
Re: UserAcccountControl
... And I have the settings reapply ... computer passwords do not expire and the client chooses whether or not it ... > You might want to look at a tool I wrote to help with cleaning up accounts. ... >>> that is leaves that flag set when creating the machine accounts. ...
(microsoft.public.windows.server.active_directory)
Re: 2nd attempt: Lost Internet IDs/Passwords w/connectcomputer
... desktop settings made it, too. ... internet IDs & Passwords didn't. ... Desktop Settings & IE Favorites made the trip but again the stored IDs & ... the stored IDs & Passwords are gone. ...
(microsoft.public.windows.server.sbs)
Re: Accounts locked out
... You may want to look at two things on your server: ... In this article see the first two settings: ... Run SuperScan and go to the Windows Enumeration tab. ... way they get your user names and then try and break the passwords. ...
(microsoft.public.inetserver.iis)