[OCLUG-Tech] can one hack PAM to reuse a password that's not supposed to be reused?

Subject: [OCLUG-Tech] can one hack PAM to reuse a password that's not supposed to be reused?
From: "Robert P. J. Day" <rpjday [ at ] crashcourse [ dot ] ca>
Date: Tue, 21 Mar 2017 09:49:02 -0400 (EDT)

  i note from the docs that PAM supports preventing the reuse of a
configurable number of old passwords with the use of the

  remember=n

however, where does PAM "remember" these passwords such that, if one
had root access and could hack files, could one manually reset the
list of remembered passwords? just curious.

rday

-- 

========================================================================
Robert P. J. Day                                 Ottawa, Ontario, CANADA
                        http://crashcourse.ca

Twitter:                                       http://twitter.com/rpjday
LinkedIn:                               http://ca.linkedin.com/in/rpjday
========================================================================

replies

Re: [OCLUG-Tech] can one hack PAM to reuse a password that's not supposed to be reused?, Scott Murphy

message navigation

previous by date: [OCLUG-Tech] SUSE Expert Day in Montreal
next by date: Re: [OCLUG-Tech] can one hack PAM to reuse a password that's not supposed to be reused?
previous by thread: [OCLUG-Tech] SUSE Expert Day in Montreal
next by thread: Re: [OCLUG-Tech] can one hack PAM to reuse a password that's not supposed to be reused?