Re: ppolicy not verifying password length (not active !!)

["Michael StrÃder" <michael@stroeder.com>]

On Wed, 5 Mar 2014 11:33:51 +0000 Rodrigo Coutinho <Rodrigo.Coutinho@ifap.pt>
wrote
> Ok, thank you for the information, but I must confess that I am a bit
> shocked, as that implies I can have a directory full of non compliant
> passwords.  
>
> So, that begs the question: How do we prevent this ?  What is the
> normal/standard way ?  

Mantra to be repeated thousands of times:

Never use rootdn to bind.

> Should one create another user with administrative privileges and use it to
> change passwords when needed ? 

Yes.

Ciao, Michael.