I just made 8 different users on 54 unix boxes. I now need to set there password. I have installed passmass and tweaked the script alittle. But when I run it and it logs into the remote machine our machines ask for a userid for loggin purposes due to being logged in as root. This can be blank but I would like it to still prompt the user running passmass for there id.
This is what it looks like after you run #ssh hostname1
Please enter your userid for logging purposes:
Can someone please add it to this script below. I know it needs done with the expect command, but no clue how and running out of time for these to be done.
Code:
#!/bin/sh
# \
exec expect -- "$0" ${1+"$@"}
# passmass: change password on many machines
# Synopsis: passmass host1 host2 host3 ....
# Don Libes - March 11, 1991
# Description: Change passwords on the named machines.
#
# See passmass.man for further info.
exp_version -exit 5.0
if {$argc==0} {
send_user "usage: $argv0 host1 host2 host3 . . .\n"
exit
}
expect_before -i $user_spawn_id \003 exit
proc badhost {host emsg} {
global badhosts
send_user "\r\n\007password not changed on $host - $emsg\n\n"
if {0==[llength $badhosts]} {
set badhosts $host
} else {
set badhosts [concat $badhosts $host]
}
}
# set defaults
set login "ssh"
set program "passwd"
set user [exec whoami]
set su 0
set timeout -1
#stty -echo
if {!$su} {
send_user "old password: "
expect_user -re "(.*)\n"
send_user "\n"
set password(old) $expect_out(1,string)
set password(login) $expect_out(1,string)
send_user "new password: "
expect_user -re "(.*)\n"
send_user "\n"
set password(new) $expect_out(1,string)
send_user "retype new password: "
expect_user -re "(.*)\n"
set password(newcheck) $expect_out(1,string)
send_user "\n"
} else {
send_user "login password: "
expect_user -re "(.*)\n"
send_user "\n"
set password(login) $expect_out(1,string)
send_user "root password: "
expect_user -re "(.*)\n"
send_user "\n"
set password(old) $expect_out(1,string)
send_user "new password: "
expect_user -re "(.*)\n"
send_user "\n"
set password(new) $expect_out(1,string)
send_user "retype new password: "
expect_user -re "(.*)\n"
set password(newcheck) $expect_out(1,string)
send_user "\n"
}
#stty echo
trap exit SIGINT
if ![string match $password(new) $password(newcheck)] {
send_user "mismatch - password unchanged\n"
exit
}
#send_user "want to see new password you just typed? (y|n) "
#expect_user "*\n"
#
#if {[string match "y" [lindex $expect_match 0 c]]} {
# send_user "password is <$password(new)>\nproceed? (y|n) "
# expect_user "*\n"
# if ![string match "y" [lindex $expect_match 0 c]] exit
#}
set timeout 30
set badhosts {}
for {set i 0} {$i<$argc} {incr i} {
set arg [lindex $argv $i]
switch -- $arg "-user" {
incr i
set user [lindex $argv $i]
continue
} "-prompt" {
incr i
set prompt [lindex $argv $i]
continue
} "-rlogin" {
set login "rlogin"
continue
} "-slogin" {
set login "slogin"
continue
} "-telnet" {
set login "telnet"
continue
} "-program" {
incr i
set program [lindex $argv $i]
continue
} "-timeout" {
incr i
set timeout [lindex $argv $i]
continue
} "-su" {
incr i
set su [lindex $argv $i]
continue
}
set host $arg
if {[string match $login "rlogin"]} {
set pid [spawn rlogin $host -l $user]
} elseif {[string match $login "slogin"]} {
set pid [spawn slogin $host -l $user]
} elseif {[string match $login "ssh"]} {
set pid [spawn ssh $host]
} else {
set pid [spawn telnet $host]
expect -re "(login|Username):.*" {
send "$user\r"
}
}
if ![info exists prompt] {
if {[string match $user "root"]} {
set prompt "# "
} else {
set prompt "(%|\\\$|#) "
}
}
set logged_in 0
while {1} {
expect "Password*" {
send "$password(login)\r"
} eof {
badhost $host "spawn failed"
break
} timeout {
badhost $host "could not log in (or unrecognized prompt)"
exec kill $pid
expect eof
break
} -re "incorrect|invalid" {
badhost $host "bad password or login"
exec kill $pid
expect eof
break
} -re $prompt {
set logged_in 1
break
}
}
if (!$logged_in) {
wait
continue
}
if ($su) {
send "su -\r"
expect "Password:"
send "$password(old)\r"
expect "# "
send "$program root\r"
} else {
send "$program\r"
}
expect "Old password*" {
send "$password(old)\r"
expect "Sorry*" {
badhost $host "old password is bad?"
continue
} "password:"
} -re "(n|N)ew password:"
send "$password(new)\r"
expect -re "not changed|unchanged" {
badhost $host "new password is bad?"
continue
} -re "(password|Verification|Verify|again):.*"
send "$password(new)\r"
expect -re "(not changed|incorrect|choose new).*" {
badhost $host "password is bad?"
continue
} -re "$prompt"
send_user "\n"
close
wait
}
if {[llength $badhosts]} {
send_user "\nfailed to set password on $badhosts\n"
}
Hello
I'm trying out expect on Solaris. I'm trying to use passmass to change my password on 2 boxes and i get the following error
"password not changed on devn2 - bad password or login"
I'm 100% positive i'm entering the correct login and password
Help!! (0 Replies)
Hello,
I am starting to use "expect-5.43" on Solaris 10 and the sample expect file called "passmass". "passmass" allows you to update the root password on many servers at once. The script runs like "./passmass server1 server2 server3, etc. I would rather run it like "./passmass serversfile"... (0 Replies)
Hi there-
I'm using passmass to change my user passwords on a few remote hosts. I'm going to be using it on additional systems in the near future, and as such I'm going to have to expand my server list within passmass. Right now I simply use the standard passmass format of "passmass -user john... (2 Replies)
