Passwords and Password Constraints - Oracle® Solaris 11 Security Guidelines

Oracle^® Solaris 11 Security Guidelines

Exit Print View

» ...Documentation Home » Oracle Solaris 11.2 Information Library » Oracle^® Solaris 11 Security ... » About Oracle Solaris Security » Protecting Users and Assigning Additional Rights » Passwords and Password Constraints

Updated: August 2014

Oracle^® Solaris 11 Security Guidelines

Document Information

Using This Documentation

Chapter 1 About Oracle Solaris Security

What's New in Security Features in Oracle Solaris 11.2

Oracle Solaris 11 Security After Installation

System Access Is Limited and Monitored

Kernel, File, and Desktop Protections Are in Place

Oracle Hardware Management Package

Oracle Solaris Configurable Security

Protecting Data

File Permissions and Access Control Entries

Cryptographic Services

Oracle Solaris ZFS File System

Java Cryptography Extension

Protecting and Isolating Applications

Privileges in Oracle Solaris

Oracle Solaris Zones

Address Space Layout Randomization

Service Management Facility

Protecting Users and Assigning Additional Rights

Passwords and Password Constraints

Pluggable Authentication Modules

User Rights Management

Securing Network Communications

Packet Filtering

Maintaining System Security

Package Integrity Verification

File Integrity Verification

Compliance to Security Standards

Labeled Security

Trusted Extensions Feature in Oracle Solaris

Labeled Filesystem

Labeled Network Communications

Trusted Extensions Multilevel Desktop

Oracle Solaris 11 Common Criteria EAL4+ Certification

Site Security Policy and Practice

Chapter 2 Configuring Oracle Solaris Security

Chapter 3 Maintaining and Monitoring Oracle Solaris Security

Appendix A Bibliography for Oracle Solaris Security

Language:

Passwords and Password Constraints

Strong user passwords help defend against attacks involving brute force guessing.

Oracle Solaris has a number of features that you can use to configure user passwords to your site requirements. You can specify password length, content, frequency of change, and modification requirements, and keep a password history. A dictionary of passwords to be avoided is provided. Several possible password hash algorithms are available. The default is SHA256.

For more information, see the following:

Maintaining Login Control in Securing Systems and Attached Devices in Oracle Solaris 11.2
Securing Logins and Passwords in Securing Systems and Attached Devices in Oracle Solaris 11.2
Selected man pages include passwd (1) and crypt.conf (4) .

Copyright © 2011, 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices