{"id":23636,"date":"2018-05-25T15:48:12","date_gmt":"2018-05-25T20:48:12","guid":{"rendered":"http:\/\/www.multitech.net\/developer\/?page_id=23636"},"modified":"2019-09-04T00:04:31","modified_gmt":"2019-09-04T05:04:31","slug":"changing-the-password","status":"publish","type":"page","link":"https:\/\/www.multitech.net\/developer\/software\/mlinux\/using-mlinux\/changing-the-password\/","title":{"rendered":"Changing the password"},"content":{"rendered":"<p><strong>**NOTE: This page applies to\u00a0mLinux<sup>\u2122<\/sup> 4.0 or higher.**<\/strong><\/p>\n<p>When the device is ready to be deployed, good security practices require that the default password be changed.\u00a0 The\u00a0password requirements in mLinux 4 are configured in: \/etc\/security\/pwquality.conf<\/p>\n<p>If the password is changed by root, then only advice is given on the choice of a new password.\u00a0 The rules are not enforced.\u00a0The default is a password scoring mechanism.<\/p>\n<p>There are four recognized types of characters:<\/p>\n<ul>\n<li>upper case<\/li>\n<li>lower case<\/li>\n<li>numeric<\/li>\n<li>and special<\/li>\n<\/ul>\n<p>The more types of characters used the fewer required.\u00a0 With all four character types, only six characters are required by default.\u00a0There is a maximum repeated characters set to two.<\/p>\n<p>A few other rules include that you:<\/p>\n<ul>\n<li>Cannot repeat six of the characters in the old password when choosing a new password.<\/li>\n<li>Are not allowed to base a password on a single dictionary word.<\/li>\n<li>Are not allowed to use the username as the password.<\/li>\n<li>Must choose from at least three types of characters.<\/li>\n<li>Can use a phrase or sentence.<\/li>\n<\/ul>\n<p>In \/etc\/security\/pwquality.conf, the minlen (minimum length) value is set to 10.\u00a0 But this is really a score.<\/p>\n<h3>Allowable Examples<\/h3>\n<p>An example of a phrase or sentence allowed is:<\/p>\n<pre class=\"brush:shell\">I'm fine.<\/pre>\n<p>The above would pass the check (provided it is not too close to the previous password).<\/p>\n<p>The following would pass the check, (but again if the previous example were the current password, it would fail for being to similar to the old password):<\/p>\n<pre class=\"brush:shell\">I'm fin<\/pre>\n<p>A shorter version that would also work:<\/p>\n<pre class=\"brush:shell\">It's me<\/pre>\n<p>As with the earlier example, if the old password is <i>I&#8217;m fin<\/i>, the new password <i>It&#8217;s me<\/i> would due to similarity:<\/p>\n<pre class=\"brush:shell\">mtcdt:~$ passwd mtadm\r\nChanging password for mtadm.\r\nCurrent password: \r\nNew password: \r\nBAD PASSWORD: The password is too similar to the old one\r\nNew password:<\/pre>\n<h3>Changing the password of any user on the system:<\/h3>\n<pre class=\"brush:shell\">mtcdt:~$ sudo passwd mtadm\r\nNew password: BAD PASSWORD: The password is too similar to the old one\r\nNew password: mtadm<\/pre>\n<p>Note that the BAD PASSWORD message is not enforced if you are running as root.<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>**NOTE: This page applies to\u00a0mLinux\u2122 4.0 or higher.** When the device is ready to be deployed, good security practices require that the default password be changed.\u00a0 The\u00a0password requirements in mLinux 4 are configured in: \/etc\/security\/pwquality.conf If the password is changed by root, then only advice is given on the choice of a new password.\u00a0 The [&hellip;]<\/p>\n","protected":false},"author":1478,"featured_media":0,"parent":9184,"menu_order":1,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"footnotes":""},"class_list":["post-23636","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/www.multitech.net\/developer\/wp-json\/wp\/v2\/pages\/23636","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.multitech.net\/developer\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.multitech.net\/developer\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.multitech.net\/developer\/wp-json\/wp\/v2\/users\/1478"}],"replies":[{"embeddable":true,"href":"https:\/\/www.multitech.net\/developer\/wp-json\/wp\/v2\/comments?post=23636"}],"version-history":[{"count":14,"href":"https:\/\/www.multitech.net\/developer\/wp-json\/wp\/v2\/pages\/23636\/revisions"}],"predecessor-version":[{"id":23645,"href":"https:\/\/www.multitech.net\/developer\/wp-json\/wp\/v2\/pages\/23636\/revisions\/23645"}],"up":[{"embeddable":true,"href":"https:\/\/www.multitech.net\/developer\/wp-json\/wp\/v2\/pages\/9184"}],"wp:attachment":[{"href":"https:\/\/www.multitech.net\/developer\/wp-json\/wp\/v2\/media?parent=23636"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}