12-11-2009
max age password question
Hi All,
I got a definition on /etc/login.defs
PASS_MAX_DAYS 41
and on /etc/shadow, most of the user id fifth column (max age) is 40.
Is that different policy or not? If it is the same policy, then the above policy don't match, right.
Thanks for any comment you may add.
Cheers, happy holiday.
9 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hi Unix gurus,
I have one question for you on passowrd:
I have one script which takes care of configuring SSH on some 200 servers. But for 200 times it prompts for password and always I enter the same password for all the 200 servers. I want to know if i can store the password in a variable or... (3 Replies)
Discussion started by: vangalli
3 Replies
2. What is on Your Mind?
What is your age? (15 Replies)
Discussion started by: royal
15 Replies
3. Shell Programming and Scripting
Hi Guys,
I hope one of you has already done this and is kind enough to share your script with me.
I have a Solaris8 server that uses password aging for its local user accounts. I need a script that checks the age of the password and then sends the user an email if the password is about to... (3 Replies)
Discussion started by: Tornado
3 Replies
4. Solaris
Hi Friends,
Can anyone tell me how can I set the password age limit for root user to 14 days....???
Also would like to add following for root password;
min-alpha --- 4
min-other --- 1
min-length -- 6
min-diff ----- 3
How can I do these on command line....???
Regards,
jumadhiya (7 Replies)
Discussion started by: jumadhiya
7 Replies
5. What is on Your Mind?
What is your age? poses an interesting question, but the age categories had some room for improvement. So I thought that I would start a new poll with with a better distribution of age groups. As with the other poll, this is a public poll. People can click on the numbers to see who voted and... (37 Replies)
Discussion started by: Perderabo
37 Replies
6. AIX
The sshd_config file shows as following:
#RSAAuthentication yes
#PubkeyAuthentication yes
#AuthorizedKeysFile .ssh/authorized_keys
It looks like user cannot ssh to this server without password. However, I can do it from other AIX server to this server.
So, how to know if this server... (2 Replies)
Discussion started by: rainbow_bean
2 Replies
7. AIX
How do you change default setting on password expiration field?
My default setting has 15 weeks for "password min age", and I would like it to be 0 for all of my current users as well as futures users created.
I guess there's a default file that I need to update, but I don't know where it is.... (2 Replies)
Discussion started by: pdtak
2 Replies
8. Linux
Hi All,
I have this userid:
# cat /etc/shadow | grep mysql
mysql:$1$O12345678901234/.:123456:0::14:::
Max password expiration is blank. What does it mean?
If it's like this below
mysql:$1$O12345678901234/.:123456:0:99999:14:::
then there's no expiration.
Thanks in advance for... (1 Reply)
Discussion started by: itik
1 Replies
9. Forum Support Area for Unregistered Users & Account Problems
I was unable to login and so used the "Forgotten Password' process. I was sent a NEWLY-PROVIDED password and a link through which my password could be changed. The NEWLY-PROVIDED password allowed me to login.
Following the provided link I attempted to update my password to one of my own... (1 Reply)
Discussion started by: Rich Marton
1 Replies
LEARN ABOUT SUNOS
ftpusers
ftpusers(4) ftpusers(4)
NAME
ftpusers - file listing users to be disallowed ftp login privileges
SYNOPSIS
/etc/ftpd/ftpusers
The ftpusers file lists users for whom ftp login privileges are disallowed. Each ftpuser entry is a single line of the form:
name
where name is the user's login name.
The FTP Server, in.ftpd(1M), reads the ftpusers file. If the login name of the user matches one of the entries listed, it rejects the login
attempt.
The ftpusers file has the following default configuration entries:
root
daemon
bin
sys
adm
lp
uccp
nuucp
smmsp
listen
nobody
noaccess
nobody4
These entries match the default instantiated entries from passwd(4). The list of default entries typically contains the superuser root and
other administrative and system application identities.
The root entry is included in the ftpusers file as a security measure since the default policy is to disallow remote logins for this iden-
tity. This policy is also set in the default value of the CONSOLE entry in the /etc/default/login file. See login(1). If you allow root
login privileges by deleting the root entry in ftpusers, you should also modify the security policy in /etc/default/login to reflect the
site security policy for remote login access by root.
Other default entries are administrative identities that are typically assumed by system applications but never used for local or remote
login, for example sys and nobody. Since these entries do not have a valid password field instantiated in shadow(4), no login can be per-
formed.
If a site adds similar administrative or system application identities in passwd(4) and shadow(4), for example, majordomo, the site should
consider including them in the ftpusers file for a consistent security policy.
Lines that begin with # are treated as comment lines and are ignored.
/etc/ftpd/ftpusers A file that lists users for whom ftp login privileges are disallowed.
/etc/ftpusers See /etc/ftpd/ftpusers. This file is deprecated, although its use is still supported.
/etc/default/login
/etc/passwd password file
/etc/shadow shadow password file
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWftpr |
+-----------------------------+-----------------------------+
|Interface Stability |External |
| | |
| /etc/ftpd/ftpusers | |
+-----------------------------+-----------------------------+
|Interface Stability |Obsolete |
| | |
| /etc/ftpusers | |
+-----------------------------+-----------------------------+
login(1), in.ftpd(1M), ftpaccess(4), ftphosts(4), passwd(4), shadow(4), attributes(5), environ(5)
1 May 2003 ftpusers(4)