Bug #6061 -- verify that negative {min,max}_password_age are accepted.
Setting the age value to -1 will disable the specific aging value; we should
accept that, but continue to reject null or empty values as invalid.
Add tests to verify that this code enforces as expected.