Environment
SUSE Linux Enterprise Server 10 Service Pack 3
Novell Open Enterprise Server 2 (OES 2) Linux Support Pack 2
Novell Open Enterprise Server 2 (OES 2) Linux Support Pack 2
Situation
Version of cracklib is 2.8.6-14.10
/et/cpam.d/common-password has the following entry:
password required pam_cracklib.so dcredit=-1 ucredit=-1 ocredit=0 lcredit=-1 minlen=8
password required pam_unix.so nullok user_authtok
A digital, uppercase and lowercase are required with a minimum password length of 8.
When a user sets their password they can set a password in all lower case even though ucredit=-1.
/et/cpam.d/common-password has the following entry:
password required pam_cracklib.so dcredit=-1 ucredit=-1 ocredit=0 lcredit=-1 minlen=8
password required pam_unix.so nullok user_authtok
A digital, uppercase and lowercase are required with a minimum password length of 8.
When a user sets their password they can set a password in all lower case even though ucredit=-1.
Resolution
The pam_cracklib.c in sp4 resolves this issue.