diff options
| author |   Mikle Kolyada <zlogene@gentoo.org> | 2020-10-28 19:07:21 +0300 |
|---|---|---|
| committer | Mikle Kolyada <zlogene@gentoo.org> | 2020-10-28 19:13:35 +0300 |
| commit | 74b99b4462138ed6b496725b2499fb5d17ad9371 (patch) | |
| tree | 257fbce6a7be9621eb3bbd40685813bedeb5cec7 | |
| parent | templates/system-auth.tpl: fix libcap module name (diff) | |
| download | pambase-74b99b4462138ed6b496725b2499fb5d17ad9371.tar.gz pambase-74b99b4462138ed6b496725b2499fb5d17ad9371.tar.bz2 pambase-74b99b4462138ed6b496725b2499fb5d17ad9371.zip | |
Do not use use_authtok if no passwd module was stackedpambase-20201028
Signed-off-by: Mikle Kolyada <zlogene@gentoo.org>
| -rw-r--r-- | templates/system-auth.tpl | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/templates/system-auth.tpl b/templates/system-auth.tpl index 2ffd7ea..6edba8d 100644 --- a/templates/system-auth.tpl +++ b/templates/system-auth.tpl @@ -35,7 +35,12 @@ password required pam_pwhistory.so use_authtok remember=5 retry=3 password [success=1 default=ignore] pam_krb5.so {{ krb5_params }} {% endif %} +{% if passwdqc or pwquality %} password required pam_unix.so try_first_pass {{ unix_authtok|default('', true) }} {{ nullok|default('', true) }} {{ unix_extended_encryption|default('', true) }} {{ debug|default('', true) }} +{% else %} +password required pam_unix.so try_first_pass {{ nullok|default('', true) }} {{ unix_extended_encryption|default('', true) }} {{ debug|default('', true) }} +{% endif %} + password optional pam_permit.so {% if pam_ssh %} |