diff options
Diffstat (limited to 'meta/recipes-extended/pam/libpam/pam.d/common-password')
-rw-r--r-- | meta/recipes-extended/pam/libpam/pam.d/common-password | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/meta/recipes-extended/pam/libpam/pam.d/common-password b/meta/recipes-extended/pam/libpam/pam.d/common-password new file mode 100644 index 0000000000..3896057328 --- /dev/null +++ b/meta/recipes-extended/pam/libpam/pam.d/common-password | |||
@@ -0,0 +1,26 @@ | |||
1 | # | ||
2 | # /etc/pam.d/common-password - password-related modules common to all services | ||
3 | # | ||
4 | # This file is included from other service-specific PAM config files, | ||
5 | # and should contain a list of modules that define the services to be | ||
6 | # used to change user passwords. The default is pam_unix. | ||
7 | |||
8 | # Explanation of pam_unix options: | ||
9 | # | ||
10 | # The "sha512" option enables salted SHA512 passwords. Without this option, | ||
11 | # the default is Unix crypt. Prior releases used the option "md5". | ||
12 | # | ||
13 | # The "obscure" option replaces the old `OBSCURE_CHECKS_ENAB' option in | ||
14 | # login.defs. | ||
15 | # | ||
16 | # See the pam_unix manpage for other options. | ||
17 | |||
18 | # here are the per-package modules (the "Primary" block) | ||
19 | password [success=1 default=ignore] pam_unix.so obscure sha512 | ||
20 | # here's the fallback if no module succeeds | ||
21 | password requisite pam_deny.so | ||
22 | # prime the stack with a positive return value if there isn't one already; | ||
23 | # this avoids us returning an error just because nothing sets a success code | ||
24 | # since the modules above will each just jump around | ||
25 | password required pam_permit.so | ||
26 | # and here are more per-package modules (the "Additional" block) | ||