i'd like to configure pw.conf to force password expiration. is there anyway to ensure the user can not change it to the same password. i don't need to keep the last 7 or anything, just stop it being the same from the last one. If/when i need the last N password, i'd assume i'd have to move to LDAP? running 5.4-RELEASE Thanks jeff