From f86144d2983474c6e74e3ea98b908db24f4fea20 Mon Sep 17 00:00:00 2001
From: Alexander Kazancev <kazancas@gmail.com>
Date: Wed, 13 Nov 2013 20:54:03 +0400
Subject: [PATCH] Use pam_unix instead pam_tcb

---
 system-auth.pamd | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/system-auth.pamd b/system-auth.pamd
index 7b15fd6..f3feaf5 100644
--- a/system-auth.pamd
+++ b/system-auth.pamd
@@ -1,17 +1,18 @@
 #%PAM-1.0
 
 auth        required      pam_env.so
-auth        sufficient    pam_tcb.so shadow nullok prefix=$2a$ count=8
+auth        sufficient    pam_unix.so try_first_pass nullok
 auth        required      pam_deny.so
 
-account     required      pam_tcb.so shadow
+account     required      pam_unix.so
 
+#password    requisite     pam_pwquality.so try_first_pass local_users_only retry=3 authtok_type=
 password    required      pam_cracklib.so try_first_pass retry=3
-password    sufficient    pam_tcb.so use_authtok shadow write_to=shadow nullok prefix=$2a$ count=8
+password    sufficient    pam_unix.so try_first_pass use_authtok nullok sha512 shadow
 password    required      pam_deny.so
 
 session     optional      pam_keyinit.so revoke
 session     required      pam_limits.so
+-session     optional      pam_systemd.so
 session     [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
-session     required      pam_tcb.so
--session    optional      pam_systemd.so
+session     required      pam_unix.so