1、修改 /etc/pam.d/system-auth
增加:password requisite pam_cracklib.so retry=5 difok=3 minlen=8 ucredit=-1 dcredit=-1 ocredit=-1 dictpaht=/usr/share/cracklib/pw_dict
2、修改/etc/hosts.allow
all 10.
3、修改 /etc/pam.d/login
第二行增加:
auth required pam_tally2.so deny=3 lock_time=600 even_deny_root root_unlock_time=10
4、修改 /etc/login.def
5、设置超时退出
修改; /etc/profile
export TMOUT=300