Just happened across this while I was modding an incorrect parameter.
Rule password_min_age: PASS_MIN_DAYS in /etc/login.defs seems to pass
regardless of the number being higher than 1. Mine was set to 7 and was
passing, so I set it to 100 for another run through and it still passed.
Note: I'm not sure if these login.defs are actually necessary, well not
in a PAM environment. When PAM's handling the restrictions login.defs
is not involved.
Citation:
http://www.linuxmanpages.com/man5/login.defs.5.php (bug section)
Cheers,
Stu