Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Password without numeric characters
Operating Systems Solaris Password without numeric characters Post 302159693 by Perderabo on Friday 18th of January 2008 08:21:00 AM
Old 01-18-2008
It may be possible for root to do it. It depends on what kind of password database is in use. If the encrypted passwords are stored in local files, then certainly root can overcome these restrictions. But simple words as passwords is not a good idea at all. Such passwords are very easily broken. In any event, a non-root user cannot force the use of a weak password. Only root has a possibility of doing this.

Edit: these restrictions are builtin to the passwd command are are documented on the passwd man page
Last edited by Perderabo; 01-18-2008 at 09:23 AM.. Reason: just saw sysgate's simul-post
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

how to set a variable to accept alpha-numeric characters?

I am working on a shell program that needs to accept alpha-numeric input (i.e., P00375); when I use a simple 'read' statement to read in the input (i.e., read LOG), I receive the message "p00375: bad number". How must I adjust my input statement to accept alpha-numerics? Thanks! Brent (3 Replies)
Discussion started by: bcaunt
3 Replies

2. UNIX for Dummies Questions & Answers

How to echo password characters

Hi All, I was wondering, how can I echo password using a character such as '*' in unix? In my machine, password is not echoed, so it is only blank space when I enter any password. So, when I enter a command such as "lock", how can I set the echo character to "*" or something else for... (4 Replies)
Discussion started by: mukluk
4 Replies

3. Shell Programming and Scripting

Perl code to differentiate numeric and non-numeric input

Hi All, Is there any code in Perl which can differentiate between numeric and non-numeric input? (11 Replies)
Discussion started by: Raynon
11 Replies

4. Shell Programming and Scripting

Terminal-specific characters in password

Good morning! I am using a shell script to back up user email files to a remote location. The problem is, one (and apparently more than one) users have the symbol "@" in their password. As you can see from the line: /sbin/mount_smbfs... (5 Replies)
Discussion started by: PittWolfBW
5 Replies

5. UNIX for Advanced & Expert Users

password verification verify password of a user for only first 8 characters

Helo , I m using linux pam library for user and its password authentication. I m creating new user and giving its password.I m giving password of 10 characters.now when I login in as that newly created user its ask me $ su - ram Password: You are required to change your password immediately... (12 Replies)
Discussion started by: amitpansuria
12 Replies

6. UNIX for Dummies Questions & Answers

printing password having special characters

Hi I have a password stored in a file (which is a user input) The password is having the special character $ say the password is pw$ord and is stored in the file pw_note I am using the following statement to store the passowrd in a variable $schema_pwd = `cat $dir/pwd_note` ; Now if i print... (4 Replies)
Discussion started by: ssuresh1999
4 Replies

7. Shell Programming and Scripting

Awk , Sed Print last 4 numeric characters

Hello All, I have been searching and trying this for a bit now. Can use some assistance. Large 5000 line flat file. bash, rhel5 Input File Sinppet: Fri Oct 30 09:24:02 EDT 2009 -- 1030 Fri Oct 30 09:26:01 EDT 2009 -- 73 Fri Oct 30 09:28:01 EDT 2009 -- 1220 Fri Oct 30 09:30:01 EDT... (9 Replies)
Discussion started by: abacus
9 Replies

8. Shell Programming and Scripting

Getting rid of non-numeric and non-characters

I have a database script that always produces the following output: 0 btw, the unwanted character looks like a square on a unix system. it doesn't look like the above quote. how can I get rid of it and only keep the "0"? ---------- Post updated at 01:57 PM ---------- Previous update was... (2 Replies)
Discussion started by: SkySmart
2 Replies

9. UNIX for Dummies Questions & Answers

How to remove numeric characters in the flat file

HI, can any one help me please .. i have flat file like qwer123rt ass3242ccf jjk654 kjh838ppp nhdg453ok hdkk34 i want remove numeric characters in the flat file i want output like this qwerrt assccf jjk kjhppp nhdgok hdkk help me... (4 Replies)
Discussion started by: rafimd1985
4 Replies

10. Shell Programming and Scripting

Grep string with regex numeric characters

Hi all, I have the following entries in a file: Cause Indicators=80 90 Cause Indicators=80 90 Cause Indicators=82 90 Cause Indicators=82 90 Cause Indicators=82 90 The first 2 digits might change so I am after a sort of grep which could find any first 2 digits + the second 2,... (3 Replies)
Discussion started by: nms
3 Replies

LEARN ABOUT REDHAT

ckpasswd

CKPASSWD(1)						    InterNetNews Documentation						       CKPASSWD(1)

NAME

       ckpasswd - nnrpd password authenticator

SYNOPSIS

       ckpasswd [-s] [-d database] [-f filename]

DESCRIPTION

       ckpasswd is the basic password authenticator for nnrpd, suitable for being run from an auth stanza in readers.conf(5).  See readers.conf(5)
       for more information on how to configure an nnrpd authenticator.

       ckpasswd accepts a username and password from nnrpd and tells nnrpd(8) whether that's the correct password for that username.  By default,
       when given no arguments, it checks the password against the password field returned by getpwnam(3).  Note that these days most systems no
       longer make real passwords available via getpwnam(3) (some still do if and only if the program calling getpwnam(3) is running as root).

       Note that ckpasswd expects all passwords to be stored encrypted by the system crypt(3) function and calls crypt(3) on the supplied password
       before comparing it to the expected password.

OPTIONS

       -d database
	   Read passwords from a database (ndbm or dbm format depending on what your system has) rather than by using getpwnam(3).  ckpasswd
	   expects database.dir and database.pag to exist and to be a database keyed by username with the encrypted passwords as the values.

	   While INN doesn't come with a program intended specifically to create such databases, on most systems it's fairly easy to write a Perl
	   script to do so.  Something like:

	       #!/usr/bin/perl
	       use NDBM_File;
	       use Fcntl;
	       tie (%db, 'NDBM_File', '/path/to/database', O_RDWR | O_CREAT, 0640)
		   or die "Cannot open /path/to/database: $!
";
	       $| = 1;
	       print "Username: ";
	       my $user = <STDIN>;
	       chomp $user;
	       print "Password: ";
	       my $passwd = <STDIN>;
	       chomp $passwd;
	       my @alphabet = ('.', '/', 0..9, 'A'..'Z', 'a'..'z');
	       my $salt = join '', @alphabet[rand 64, rand 64];
	       $db{$user} = crypt ($passwd, $salt);
	       untie %db;

	   Note that this will echo back the password when typed; there are obvious improvements that could be made to this, but it should be a
	   reasonable start.

	   This option will not be available on systems without dbm or ndbm libraries.

       -f filename
	   Read passwords from the given file rather than using getpwnam(3).  The file is expected to be formatted like a system password file, at
	   leat vaguely.  That means each line should look something like:

	       username:pdIh9NCNslkq6

	   (and each line may have an additional colon after the encrypted password and additional data; that data will be ignored by ckpasswd).
	   INN does not come with a utility to create the encrypted passwords, but it's a quick job with Perl (see the example script under -d).

       -s  Check passwords against the result of getspnam(3) instead of getpwnam(3).  This function, on those systems that supports it, reads from
	   /etc/shadow or similar more restricted files.  If you want to check passwords supplied to nnrpd(8) against system account passwords,
	   you will probably have to use this option on most systems.

	   Most systems require special privileges to call getspnam(3), so in order to use this option you may need to make ckpasswd setgid to
	   some group (like group "shadow") or even setuid root.  ckpasswd has not been specifically audited for such uses!  It is, however, a
	   very small program that you should be able to check by hand for security.

	   This configuration is not recommended if it can be avoided, since the NNTP protocol has no way of protecting passwords from casual
	   interception, and using system passwords to authenticate NNTP connections therefore opens you up to the risk of password sniffing.  If
	   you do use system passwords to authenticate connections, you should seriously consider only doing NNTP through ssh tunnels or over SSL.

EXAMPLES

       See readers.conf(5) for examples of nnrpd(8) authentication configuration that uses ckpasswd to check passwords.

HISTORY

       Written by Russ Allbery <rra@stanford.edu> for InterNetNews.

       $Id: ckpasswd.1,v 1.1.2.1 2000/11/06 08:41:11 rra Exp $

SEE ALSO

       readers.conf(5), nnrpd(8)

3rd Berkeley Distribution					      INN 2.3							       CKPASSWD(1)
All times are GMT -4. The time now is 06:55 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy