disabling password strength checking via passwdqc

From thelinuxwiki
Jump to: navigation, search

Problem Description:

later versions of gentoo enforce password security requiring a minimum of 11 characters. this solution is for those who wish to disable this feature.

example:

(none) /etc/skel/.ssh # passwd root                    

You can now choose the new password or passphrase.

A valid password should be a mix of upper and lower case letters, digits, and
other characters.  You can use a password containing at least 7 characters
from all of these classes, or a password containing at least 8 characters
from just 3 of these 4 classes.
An upper case letter that begins the password and a digit that ends it do not
count towards the number of character classes used.

A passphrase should be of at least 3 words, 11 to 72 characters long, and
contain enough different characters.

Alternatively, if no one else can see your terminal now, you can pick this as
your password: "axiom3Ground8terror".

Enter new password: 
Weak password: too short.

Error:

too short

Solution:

edit config file /etc/security/passwdqc.conf

change the line...

enforce=everyone

to...

enforce=none

there is not need to restart or reload any process. you will continue to receive the message "passphrase should be of at least 3 words, 11 to 72 characters long", but it will not be enforced and you can set a shorter password without receiving the error "too short".