minlen=8
pam_cracklib.so
lcredit=-1
pam_cracklib.so
ucredit=-1
pam_cracklib.so
dcredit=-1
pam_cracklib.so
ocredit=-1
auth
required
/lib/security/$ISA/pam_env.so
auth
sufficient /lib/security/$ISA/pam_unix.so likeauth nullok
auth
required
/lib/security/$ISA/pam_deny.so
account
required
/lib/security/$ISA/pam_unix.so
account
sufficient /lib/security/$ISA/pam_succeed_if.so uid < 100
quiet
account
required
/lib/security/$ISA/pam_permit.so
password requisite /lib/security/$ISA/pam_cracklib.so retry=3
minlen=8 lcredit=-1 ucredit=-1 dcredit=-1 ocredit=-1
password
sufficient
/lib/security/$ISA/pam_unix.so nullok
use_authtok md5 shadow
password
required
/lib/security/$ISA/pam_deny.so
session
required
/lib/security/$ISA/pam_limits.so
session
required
/lib/security/$ISA/pam_unix.so
Asegurando Inittab
vim /etc/inittab
Activando el nivel de arranque por terminal.
id:3:initdefault:
Desactivando la opcin CTRL-ALT-DELETE
#ca::ctrlaltdel:/sbin/shtdown t3 r now
Tomado de:
http://www.puschitz.com/SecuringLinux.shtml#ReviewingInittabAndBootS
cripts