拿到一台ubuntu18.04,可以创建用户,但是不能更改密码
$ passwd
passwd: module is unknown
passwd: password unchanged
$ tail -n 4 /var/log/auth.log
Nov 20 04:01:57 ubuntu1804 passwd[32535]: PAM pam_parse: expecting return value; [...requisste]
Nov 20 04:01:57 ubuntu1804 passwd[32535]: PAM unable to dlopen(pam_cracklib.so): /lib/security/pam_cracklib.so: cannot open shared object file: No such file or directory
Nov 20 04:01:57 ubuntu1804 passwd[32535]: PAM adding faulty module: pam_cracklib.so
Nov 20 04:01:57 ubuntu1804 passwd[32535]: PAM pam_parse: expecting return value; [...requisste]
参考passwd命令配置
cat /etc/pam.d/command-passwd
配置信息只有三行
password [success=1 default=ignore] pam_unix.so obscure use_authtok try_first_pass sha512
password requisite pam_deny.so
password required pam_permit.so
里面有一行
password [success=1 default=ignore] pam_unix.so obscure use_authtok try_first_pass sha512
use_authtok
When password changing enforce the module to set the new password to the one provided
by a previously stacked password module (this is used in the example of the stacking
of the pam_cracklib module documented below)
更改密码时,use_authtok
强制模块将新密码与记录在模块 pam_cracklib
中的密码做对比。因此需要安装pam_cracklib,之后再做进一步设置。因为并不需要重复密码限制,所以删除该选项。
参考: