04-09-2002
Changing Users Passwords Via Script?
I am the administrator for a large network of HP/UX servers, about 100, this will be growing to over 200 in the next 18 months, part of my duties are to change the root passwords on these machines once month... which is a pain. I have written a script that will generate random passwords for me and print them out so that I do not have to think of and write down the passwords for safe keeping.
Yep, you guessed the next question... how can I pass the passwords to a script which will change them automatically on each machine?
I have done quite a bit of looking into this and found one answer is to use the GNU expect binary, but I am having difficulties getting the binary working on our servers, should I not get it working does any one have any ideas?
Please note that company policy does not allow me to use remote shells, psuedo root users and none expiring accounts.
Thanks in advance
- Paul
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hello everyone let me start off by saying happy new year to all
I am new to this board.
I am running a multipurpose server (web/ftp/email) it runs apache 1.3.20 i think it is and Qmail
would I would like to do is find/create a script that will allow my users to change there unix password... (1 Reply)
Discussion started by: viperws
1 Replies
2. Shell Programming and Scripting
Just wanted options of this - first 'real' Perl script and I'm not positive of all the quirks in Perl. Any suggestions are welcome.
Especially since I'm messing with /etc/shadow! Running Solaris 2.6, Perl 5.005.03
#!/u/bin/perl
#
# Change the user's old password to the new in /etc/shadow ... (3 Replies)
Discussion started by: thehoghunter
3 Replies
3. Shell Programming and Scripting
now, for reasons i really cant begin to delve into, i have to find a way to be able to rmeotely create user accounts and also assign them passwords. unfortunately, it appears Sun boxes frowns upon this. sun boxes will let u create a user account remotely but will never let u assign the useraccount... (0 Replies)
Discussion started by: Terrible
0 Replies
4. UNIX for Advanced & Expert Users
What is the best way to monitor who changes passwords, or what passwords get changed? Is there a way to send that over to Syslog?
An example would be someone logs in as themselves, changes to root (which I capture by loging auth and auth.info) and then changes a password.
Do I need to put an... (1 Reply)
Discussion started by: AW12
1 Replies
5. Solaris
Hi All,
How to restrict the NIS users not to change their passwords in for NIS users??
and my NIS user is unable to login to at client location what could be the problem for this ?
Any body can help me. Thanks in advance. (1 Reply)
Discussion started by: Sharath Kumar
1 Replies
6. Shell Programming and Scripting
Hello,
We are running aix 5.3.
We're looking for a script that can change passwords, taking 2 arguments ( old password, new password ).
I am wondering if this can be done with a here document, or some generic scripting method.
Or, if I would have to download expect.
Alternatively I wonder... (3 Replies)
Discussion started by: fwellers
3 Replies
7. Solaris
We are real strict when it comes to passwords. Every 60 days the admins have to change passwords on all of the accounts. And there is pretty strict enforcement of the type of passwords chosen. This is a tedious and monotonous job. Ww don't use NIS or LDAP, so this has to be done on each machine. ... (5 Replies)
Discussion started by: brownwrap
5 Replies
8. Shell Programming and Scripting
hi,
i am new to shell scripts
i write a shell script to create multiple users but i need to give passwords to that users while creating users, command to write this script (1 Reply)
Discussion started by: DONFOX
1 Replies
9. Red Hat
Hi,
I have problem with a script, it was working for 6 month and suddenly I started getting strange expire times
example:
# chage -l wXXp
Last password change : Oct 28, 2014
Password expires : Nov 27, 2014
Password... (3 Replies)
Discussion started by: redmansas
3 Replies
LEARN ABOUT DEBIAN
poppassd
POPPASSD(8) POPPASSD(8)
NAME
poppassd - Password change server for Eudora and NUPOP mail clients
DESCRIPTION
poppassd runs from inetd and listens on TCP port 106 by default. Its sole purpose in life is to engage in short FTP-like conversations
from client applications and execute (or deny) remote password changes via the PAM facilities configured in /etc/pam.d/poppassd. The con-
versation looks something like this:
200 poppassd v1.8.4 hello, who are you?
user adconrad
200 Your password please.
pass foo
200 Your new password please.
newpass bar
200 Password changed, thank-you.
quit
200 Bye.
As can be seen from the example above, unencrypted passwords are transmitted over the network. Because of this, it is recommended that you
use this daemon only for local loopback password changing (for instance, from Perl, Python, or PHP web applications on the same server) and
block all non-local access to port 106, either via tcpwrappers (/etc/hosts.deny) or with appropriate firewall rules.
If sending unencrypted passwords over the wire doesn't bug you terribly much (as in the case of an ISP with hundreds of POP3 mail
accounts), this daemon can provide a simple way for some of your clients (those running mail clients that actually support this protocol)
to easily change their passwords.
FILES
/etc/pam.d/poppassd
Contains the PAM configuration for poppassd. By default on Debian, it merely includes the common-auth and common-password files,
which should work in most cases. If this doesn't cut it for your site, tailor to suit.
SEE ALSO
pam(7), inetd(8), hosts.deny(5)
AUTHOR
This manual page was written by Adam Conrad <adconrad@0c3.net> for the Debian operating system.
Debian 19 March 2004 POPPASSD(8)