/sbin/authconfig —passminlen=8 —update
    /sbin/authconfig —enablereqdigit —update
    /sbin/authconfig —enablereqlower —update
    /sbin/authconfig —enablerequpper —update
    /sbin/authconfig —enablereqother —update

    1. [chroot@test-sftp-server ~]$ grep "^lcredit" /etc/security/pwquality.conf 
    2. lcredit     = -1
    3. [chroot@test-sftp-server ~]$ ll /etc/security/pwquality.conf 
    4. -rw-r--r--. 1 root root 1843 Jul  5 09:49 /etc/security/pwquality.conf
    5. [chroot@test-sftp-server ~]$ cat  /etc/security/pwquality.conf 
    6. # Configuration for systemwide password quality limits
    7. # Defaults:
    8. #
    9. # Number of characters in the new password that must not be present in the
    10. # old password.
    11. # difok = 5
    12. #
    13. # Minimum acceptable size for the new password (plus one if
    14. # credits are not disabled which is the default). (See pam_cracklib manual.)
    15. # Cannot be set to lower value than 6.
    16. # minlen = 9
    17. #
    18. # The maximum credit for having digits in the new password. If less than 0
    19. # it is the minimum number of digits in the new password.
    20. # dcredit = 1
    21. #
    22. # The maximum credit for having uppercase characters in the new password.
    23. # If less than 0 it is the minimum number of uppercase characters in the new
    24. # password.
    25. # ucredit = 1
    26. #
    27. # The maximum credit for having lowercase characters in the new password.
    28. # If less than 0 it is the minimum number of lowercase characters in the new
    29. # password.
    30. # lcredit = 1
    31. #
    32. # The maximum credit for having other characters in the new password.
    33. # If less than 0 it is the minimum number of other characters in the new
    34. # password.
    35. # ocredit = 1
    36. #
    37. # The minimum number of required classes of characters for the new
    38. # password (digits, uppercase, lowercase, others).
    39. # minclass = 0
    40. #
    41. # The maximum number of allowed consecutive same characters in the new password.
    42. # The check is disabled if the value is 0.
    43. # maxrepeat = 0
    44. #
    45. # The maximum number of allowed consecutive characters of the same class in the
    46. # new password.
    47. # The check is disabled if the value is 0.
    48. # maxclassrepeat = 0
    49. #
    50. # Whether to check for the words from the passwd entry GECOS string of the user.
    51. # The check is enabled if the value is not 0.
    52. # gecoscheck = 0
    53. #
    54. # Path to the cracklib dictionaries. Default is to use the cracklib default.
    55. # dictpath =
    56. minlen = 8
    57. minclass = 1
    58. maxrepeat = 0
    59. maxclassrepeat = 0
    60. lcredit     = -1
    61. ucredit     = -1
    62. dcredit     = -1
    63. ocredit     = -1
    64. [chroot@test-sftp-server ~]$
    1. [chroot@test-sftp-server ~]$ cat /etc/login.defs |grep PASS_MAX_DAYS
    2. #    PASS_MAX_DAYS    Maximum number of days a password may be used.
    3. PASS_MAX_DAYS    90
    4. [chroot@test-sftp-server ~]$