[Bug 264851] Chapter 14.2.4 - Difficult to understand or typo

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 264851] Chapter 14.2.4 - Doesn't make sense to me :/"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sat, 25 Jun 2022 12:31:47 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=264851

Graham Perrin <grahamperrin@gmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |grahamperrin@gmail.com

--- Comment #3 from Graham Perrin <grahamperrin@gmail.com> ---
(In reply to kodcode from comment #0)

> 14.2.4

<https://docs.freebsd.org/en/books/handbook/book/#security-pwpolicy> |
<https://docs.freebsd.org/en/books/handbook/security/#security-pwpolicy>

----

> … using built-in Pluggable Authentication Modules (PAM). …

Instead: 

> … using pluggable authentication modules (PAMs). …

----

> … the pam_passwdqc.so module. This module is enforced when a user 
> changes their password. …

Instead: 

> … the pam_passwdqc.so module, which is enforced when a user 
> changes their password. 
> 
> pam_passwdqc(8) describes five classes of character, and other aspects of 
> password quality control. …

----

> This example sets several requirements for new passwords. The min setting 
> controls the minimum password length. It has five values because this 
> module defines five different types of passwords based on their 
> complexity. Complexity is defined by the type of characters that must 
> exist in a password, such as letters, numbers, symbols, and case. The 
> types of passwords are described in pam_passwdqc(8). In this example, 
> the first three types of passwords are disabled, meaning that passwords 
> that meet those complexity requirements will not be accepted, regardless 
> of their length. The 12 sets a minimum password policy of at least 
> twelve characters, if the password also contains characters with 
> three types of complexity. The 10 sets the password policy to also allow 
> passwords of at least ten characters, if the password contains characters 
> with four types of complexity.

Too verbose, IMHO. Instead: 

> In the example above: 
> 
> * min sets values for types N0, N1, N2, N3 and N4
> 
> * types N0, N1 and N2 are disallowed
> 
> * if three classes of character (N3) are used, then the word length must 
>   be at least 12
> 
> * if four classes (N4) are used, then the word length must be at least 10. 

– something like that. 

The reader is directed, _before_ the example, to see the manual page that
describes the N types.

-- 
You are receiving this mail because:
You are the assignee for the bug.