#%PAM-1.0
-# Sample /etc/pam.d/sudo file for RedHat Linux 5.0 and above.
-# This is where you configure your authorization method. The uncommented
-# line below does 'normal' (/etc/passwd) authentication. The commented line
-# just above is what I use on my system, which allows my users to validate
-# against our Windows NT domain. - GJC
-#auth required /lib/security/pam_smb_auth.so
-auth required /lib/security/pam_unix.so shadow
+auth required pam_unix.so
+account required pam_unix.so
+password required pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3
+password required pam_unix.so md5 shadow use_authtok
+password required pam_make.so /var/db
+session required pam_unix.so
+session required pam_env.so
+session required pam_limits.so change_uid
+#session required pam_selinux.so