Enable weak password in Ubuntu

最新推荐文章于 2023-08-14 22:51:36 发布

原创最新推荐文章于 2023-08-14 22:51:36 发布 · 3.6k 阅读

0 ·

CC 4.0 BY-SA版权

Comp/Prog/Linux Tips 专栏收录该内容

60 篇文章

订阅专栏

本文揭示了在Linux系统中通过编辑/etc/pam.d/common-password文件，移除‘obscure’选项来增强密码强度检查的过程。删除此选项后，系统将不再对密码进行复杂性限制，从而降低弱密码被攻击的风险。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

WARNING: BAD PRACTICE!

Here we go.

Edit /etc/pam.d/common-password

find the line

password       [success=1 default=ignore]      pam_unix.so obscure sha512

The "obscure" option here disables simple password, according to the man page of pam_unix(8)

Enable some extra checks on password strength. ... The following checks are implemented:
...
Simple
Is the new password too simple? This is based on the length of
               the password and the number of different types of characters
               (alpha, numeric, etc.) used.

So, delete this "obscure" option and now you opened your box to the dumbest attack on the internet: weak password.