deactivate pw_max_age #58

Closed
JannikZed opened this Issue Oct 27, 2014 · 3 comments

Comments

Projects
None yet
3 participants
@JannikZed

HI,
is it possible, to completely deactivate the pw_max_age security feature? We don't use passwords anyway. As an alternative we could set an maximum password age (maybe something around 10 years?)

@atomic111

This comment has been minimized.

Show comment
Hide comment
@atomic111

atomic111 Oct 27, 2014

Member

Hi,
thank you for your issue. Please use the cookbook attribute and set it to -1. Here a snippet from the login.defs manpage

PASS_MAX_DAYS (number) 
The maximum number of days a password may be used. If the password is older than this, a password change will be forced. If not specified, -1 will be assumed (which disables the restriction). 
Member

atomic111 commented Oct 27, 2014

Hi,
thank you for your issue. Please use the cookbook attribute and set it to -1. Here a snippet from the login.defs manpage

PASS_MAX_DAYS (number) 
The maximum number of days a password may be used. If the password is older than this, a password change will be forced. If not specified, -1 will be assumed (which disables the restriction). 
@chris-rock

This comment has been minimized.

Show comment
Hide comment
@chris-rock

chris-rock Dec 4, 2014

Member

@JannikZed can we close this?

Member

chris-rock commented Dec 4, 2014

@JannikZed can we close this?

@JannikZed

This comment has been minimized.

Show comment
Hide comment
@JannikZed

JannikZed Dec 4, 2014

Yes, everything works fine

Yes, everything works fine

@JannikZed JannikZed closed this Dec 4, 2014

rollbrettler pushed a commit to rollbrettler/chef-os-hardening that referenced this issue Sep 16, 2016

Merge pull request #58 from TelekomLabs/protocol-v1-cleanup
remove options that only apply to SSH protocol version 1
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment