Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Shadow file password policy
Operating Systems Linux Red Hat Shadow file password policy Post 302458564 by pinga123 on Friday 1st of October 2010 06:07:04 AM
Old 10-01-2010
Nice question .I was written in the security manual that all GID must be within range for the distribution.


Quote:
The user “nobody” traditionally got the largest possible UID (as the opposite of the Superuser): 32767. ---Source wikipedia.
Sadly this is not the case in my distribution.
Quote:
cat /etc/passwd | grep nobody
nobody:x:99:99:Nobody:/:/sbin/nologin
However i checked the /usr/include/bits but there is no such directory called bits.
Instead i got it under /usr/include/pppd/pppd.h

Quote:
# grep -i gid /usr/include/pppd/pppd.h
#ifndef GIDSET_TYPE
#define GIDSET_TYPE gid_t

extern GIDSET_TYPE groups[NGROUPS_MAX]; /* groups the user is in */
Quote:
# grep -i gid_t /usr/include/pppd/pppd.h
#define GIDSET_TYPE gid_t
Still not sure if it is int or something else.

---------- Post updated at 05:07 AM ---------- Previous update was at 05:02 AM ----------

Do you think its int as i got following.

Quote:
#define GIDSET_TYPE gid_t
/usr/include/libsmbclient.h:int smbc_chown(const char *url, uid_t owner, gid_t group);
/usr/include/libdevmapper.h:int dm_task_set_gid(struct dm_task *dmt, gid_t gid);
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

I want to append password in /etc/shadow file

Hi, I want to append password into /etc/shadow file using a shell script. My below script does add the users to both /etc/passwd and /etc/shadow but how can I add the hordcoded passwords to /etc/shadow file can some one help me ? # To add the groups into /etc/group file for a_user... (5 Replies)
Discussion started by: modgil
5 Replies

2. UNIX for Dummies Questions & Answers

shadow file after a password reset

hi, I had to reset a lost root password by editing the /etc/passwd and /etc/shadow files ( this is a xen vm file, so i mounted and chrooted the file ) after the reboot with an empty password on root , i have set a new password with passwd but it only changed the /etc/passwd file.... (0 Replies)
Discussion started by: progressdll
0 Replies

3. Solaris

Password Recovery From /etc/shadow file

Is it possible to reset a normal user password , by editing password field in /etc/shadow file? Thanks (6 Replies)
Discussion started by: ksvaisakh
6 Replies

4. Solaris

Password policy problem ??

Hi Solaris's expert I need to change user password on Solaris10 2 servers. With the same password I can change it just only one. Try to check everything but not found difference?? password pattern: abcdeFgh9Jk server1 check all characters but server2 check only first 8 characters.Why??... (10 Replies)
Discussion started by: arm_naja
10 Replies

5. Red Hat

NIS password policy

Hi, I am running NIS server on redhat linux 5 and I want to implement password restrictions for the yppasswd, how can I do it.Please help me. I can implement password restriction for passwd by configuring /etc/pam.d/system-auth and setting crack_lib.so but I don't know how to implent the same... (3 Replies)
Discussion started by: ktrimu
3 Replies

6. Solaris

password policy for new user

hi folk, i try to setup a new password policy for our solaris box user, below are the /etc/default/passwd/, but then when i tried to create a user, it didn't ask for numeric character, and the new password also didn't ask for special characters. # useradd testing # passwd testing New... (7 Replies)
Discussion started by: dehetoxic
7 Replies

7. Shell Programming and Scripting

how to remove the non : characters after the password in shadow file?

On SPARC Solaris 10. I set the app account so it's expired. I also want it so not required to change password at first login, I can do this by removing the numbers after the password in /etc/shadow. example using user1 The /etc/shadow file looks like this: user1:kOmcVXAImRTAY:0::::90:: ... (8 Replies)
Discussion started by: TKD
8 Replies

8. UNIX for Dummies Questions & Answers

Using the encrypted password of the shadow file

i have an application that uses the encrypted password that's in the /etc/shadow file. i copied the line for the particular username i was interested it in from shadow file and i pasted it into the password file of the application. the application is nagios. this application allowed that... (5 Replies)
Discussion started by: SkySmart
5 Replies

9. Ubuntu

Password Expiration Policy

Hello Team, I am using Lubuntu & have DRBL remote boot setup with open Ldap authentication. Currently there is no password expire policy. I want to set Password Policy so that user's password will expire after a month & they will get prompt to change their password. Using PAM we can do it,... (1 Reply)
Discussion started by: paragnehete
1 Replies

10. AIX

Password Policy

I need help. I have set a password policy. But I want to dis allow setting user name as password. My policy is as below... min length =8 min diff=2 min alpha=2 max repeats=2 dictionary= /usr/share/dict/words Still user can set his username as password (i.e. Jackie1234). Code tags for... (11 Replies)
Discussion started by: powerAIX
11 Replies

LEARN ABOUT DEBIAN

pppd-radius

PPPD-RADIUS(8)						      System Manager's Manual						    PPPD-RADIUS(8)

NAME

       radius.so - RADIUS authentication plugin for pppd(8)

SYNOPSIS

       pppd [ options ] plugin radius.so

DESCRIPTION

       The  RADIUS  plugin for pppd permits pppd to perform PAP, CHAP, MS-CHAP and MS-CHAPv2 authentication against a RADIUS server instead of the
       usual /etc/ppp/pap-secrets and /etc/ppp/chap-secrets files.

       The RADIUS plugin is built on a library called radiusclient which has its own configuration files (usually in  /etc/radiusclient),  consult
       those files for more information on configuring the RADIUS plugin

OPTIONS

       The RADIUS plugin introduces one additional pppd option:

       radius-config-file filename
	      The  file  filename  is  taken  as  the  radiusclient  configuration  file.   If	this  option  is  not  used,  then the plugin uses
	      /etc/radiusclient/radiusclient.conf as the configuration file.

       avpair attribute=value
	      Adds an Attribute-Value pair to be passed on to the RADIUS server on each request.

       map-to-ifname
	      Sets Radius NAS-Port attribute to number equal to interface name (Default)

       map-to-ttyname
	      Sets Radius NAS-Port attribute value via libradiusclient library

USAGE

       To use the plugin, simply supply the plugin radius.so option to pppd, and edit /etc/radiusclient/radiusclient.conf appropriately.   If  you
       use  the  RADIUS  plugin,  the  normal  pppd authentication schemes (login, checking the /etc/ppp/*-secrets files) are skipped.	The RADIUS
       server should assign an IP address to the peer using the RADIUS Framed-IP-Address attribute.

SEE ALSO

       pppd(8) pppd-radattr(8)

AUTHOR

       David F. Skoll <dfs@roaringpenguin.com>

																    PPPD-RADIUS(8)
All times are GMT -4. The time now is 03:50 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy