Yes. this would enforce the password policy regardless of the method used to change it. Currently, it would be possible to do a ldap_modify to change your password to a 1 character password that would let you authenticate to any clients, including pam_ldap.
Yes. this would enforce the password policy regardless of the method used to change it. Currently, it would be possible to do a ldap_modify to change your password to a 1 character password that would let you authenticate to any clients, including pam_ldap.
I plan on fixing this in gutsy.