From:	CRDGW2::CRDGW2::MRGATE::"SMTP::CRVAX.SRI.COM::RELAY-INFO-VAX"  1-NOV-1990 18:24:56.29
To:	MRGATE::"ARISIA::EVERHART"
CC:	
Subj:	Re: VMS 5.4 upgrade

Received:  by crdgw1.ge.com (5.57/GE 1.76)
	 id AA29552; Thu, 1 Nov 90 17:25:54 EST
Received: From UCBVAX.BERKELEY.EDU by CRVAX.SRI.COM with TCP; Thu,  1 NOV 90 11:02:02 PDT
Received: by ucbvax.Berkeley.EDU (5.63/1.42)
	id AA17249; Thu, 1 Nov 90 10:48:23 -0800
Received: from USENET by ucbvax.Berkeley.EDU with netnews
	for info-vax@kl.sri.com (info-vax@kl.sri.com)
	(contact usenet@ucbvax.Berkeley.EDU if you have questions)
Date: 1 Nov 90 18:30:03 GMT
From: usc!samsung!dali.cs.montana.edu!milton!seymour@ucsd.edu  (Richard Seymour)
Organization: University of Washington, Seattle
Subject: Re: VMS 5.4 upgrade
Message-Id: <10427@milton.u.washington.edu>
References: <0093F05B.4D7B8FE0@teak.stl.stc.co.uk>, <1990Nov1.010139.670@spcvxb.spc.edu>
Sender: info-vax-request@kl.sri.com
To: info-vax@kl.sri.com

In article <1990Nov1.010139.670@spcvxb.spc.edu> terry@spcvxb.spc.edu (Terry Kennedy, Operations Mgr) writes:
>  The new password history business is automatic. If you need to disable it,
>you'll need to do a global change to all your UAF records. It's easy to type,
>but takes a while if you have a lot of usernames.

i'd forgotten about that (it's only a 2-user system, and only one person
tried to change his password, so i didn't notice the usual "office filled
with users" syndrome of major hiccups).
For those (like me) who couldn't find the new Authorize flag in HELP,
you can "globally" disable the dictionary-search and history-check
by:
   $run authorize
    auth>  MOD */flag=(disPWDdic,disPWDhis)

and/or you can limit the history depth by
 $define/system/exec  sys$password_history_limit  NNN
with "nnn" being the number you wish (60 is default)
<this stuff is in the 5.4 new features manual, pg 14-1 and 14-2)
--dick