prevent customers setting weak password with pam_passwdqc