Enforcing password complexity on CentOS

The pam_pwquality (previously pam_cracklib) module is used to check password complexity against a set of rules. It checks if the password is found in a dictionary; if not, it will continue with additional checks. The config file is /etc/security/pwquality.conf but, if in use, it can be configured in /etc/pam.d/system-auth. To add the password policies, just… Continue reading “Enforcing password complexity on CentOS”

Convert ppk to OpenSSH keypairs

.ppk files are created by PuTTY to store a private key generated by the program. To convert keypairs, first you need to install the package putty and then: Generate the private key: puttygen id_rsa.ppk -O private-openssh -o id_rsa Generate the public key: puttygen id_rsa.ppk -O public-openssh -o id_rsa.pub

Enable SFTP on Solaris 11

Once you’ve installed an OpenSSH server, you also have an SFTP server. In Solaris, you should check if the subsystem is configured properly or not. Configuration is stored in /etc/ssh/sshd_config file: Restart the service:

Solaris basics: boot environments

Solaris 11 uses ZFS as root files system. It all started with a product called Live Upgrade, supporting alternate boot environments (ABEs), a copy of the root file system that can be used as alternate boot devices. With BEs it’s the same except you don’t need additional partitions. You use ZFS’s snapshots to capture a… Continue reading “Solaris basics: boot environments”