How to enable password policy on readonly filesystem?

vishnumotghare

12/13/23, 1:18 PM

I'm using a read-only filesystem (squashfs). I've used the overlays file system to mount /etc directory. I can change the password using passwd command.

I've included libpam & libpwquality packages to enable the strong password policy. I see the following files are present in /etc/pam.d directory

common-account                 common-session-noninteractive  runuser-l                      su-l
common-auth                    login                          screen                         sudo
common-password                other                          sshd
common-session                 runuser                        su

Following is the content of `/etc/pam.d/common-password file

password        requisite                       pam_pwquality.so retry=3 minlen=8 ucredit=-1
password        [success=1 default=ignore]      pam_unix.so use_authtok try_first_pass obscure sha512
password        requisite                       pam_deny.so
password        required                        pam_permit.so

When I try to change the password, It still allows a weak password. How to enable a strong password policy on the read-only file system with the overlay enabled?

0 + 0

filesystems

pam

read-only

password-policy

overlayfs

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: How to enable password policy on readonly filesystem?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.