Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Password Aging script non-shadow non-trusted
Operating Systems HP-UX Password Aging script non-shadow non-trusted Post 302539702 by methyl on Monday 18th of July 2011 12:02:30 PM
Old 07-18-2011
Quote:
EMAILID=`cat /etc/passwd.ORG | grep $i | sed 's/:/+/g' | cut -d+ -f6`
The above line (and similar lines) is likely to give accidental matches which will break the script.
It would be better as:
Quote:
EMAILID=`cat /etc/passwd.ORG | grep \^${i}: | sed 's/:/+/g' | cut -d+ -f6`
The convention for holding multiple fields in the comment field is to separate them with comma characters.

If you start with the output from " logins -xto " all your required fields for a user are available in one colon-delimited line thereby removing the need to search the passwd file umpteen times.
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

OpenSSH and password aging

Vesion 3.8.1 of OpenSSH has been compiled on a Solaris 8 host. I am having difficulties in enabling password aging to work from reading /etc/default/passwd and /etc/shadow. # passwd -f < user-id > works satisfactorily however once a password ages through due course from the settings in... (1 Reply)
Discussion started by: raylen
1 Replies

2. UNIX for Dummies Questions & Answers

remove shadow password

Does anyone know how to remove a stanza in the shadow password file if the user account has already been removed on an AIX box? I know it can be done by editing the file itself but I would prefer not to do it that way. cheers gizaa (2 Replies)
Discussion started by: gizaa
2 Replies

3. UNIX for Dummies Questions & Answers

password aging help

If the command passwd -f is used, Users get the below error. I need to force users to change there passwords at initial login. Anyone know what is going on? This is on a Non-Stop UX system UX:in.login: ERROR: Your password has been expired for too long UX:in.login: TO FIX: Consult your system... (0 Replies)
Discussion started by: breigner
0 Replies

4. UNIX for Dummies Questions & Answers

password aging

hi experts this is regarding password aging i tried searching forum but i cudnt locate given a login id, i would like to determine whether password ageing has been enabled for that and for the login id whether password has been expired on a particular point of time Thanks (4 Replies)
Discussion started by: teletype_error
4 Replies

5. Cybersecurity

lost root password using (SAM) trusted security

I have used the system administration management trusted security system and in the process the root password have been changed or lost. Is there any possible way to recover root status after this incident:( (5 Replies)
Discussion started by: jordanrt
5 Replies

6. Shell Programming and Scripting

is there anyway of implementing password aging in NIS?

Hi , is there anyway of implementing password aging in NIS? I would say thanks in advance. Thanks and regards, HAA (1 Reply)
Discussion started by: HAA
1 Replies

7. HP-UX

shadowed password file on non-trusted system?

Is it possible to have shadowed password file without implementing a Trusted System? (3 Replies)
Discussion started by: linuxdude
3 Replies

8. UNIX for Advanced & Expert Users

Password Aging with Openssh 5.2 SFTP Subsystem Jail

All, I enabled PAM and aged a password, but when I login it asks me for the current password then says password unchanged after entering the current password. Is this a bug? My security dept is going to want me to enable password aging and I'm stuck! Any help on what the issu is? ... (6 Replies)
Discussion started by: markdjones82
6 Replies

9. Solaris

passwd cmd reenables passwd aging in shadow entry

Hi Folks, I have Solaris 10, latest release. We have passwd aging set in /etc/defalut/passwd. I have an account that passwd should never expire. Acheived by emptying associated users shadow file entries for passwd aging. When I reset the users passwd using passwd command, it re enables... (3 Replies)
Discussion started by: BG_JrAdmin
3 Replies

10. Linux

Linux password aging and ssh keys

Recently I have been playing with password ageing and the usage of ssh keys. I have found that if usePAM yes (default) is set in the /etc/ssh/sshd_config file then any password ageing and inactiivity can adversely affect a client with ssh keys. For example: Set PASS_MAX_DAYS to 60 in... (5 Replies)
Discussion started by: smurphy_it
5 Replies

LEARN ABOUT OPENDARWIN

regex

regex(1F)							   FMLI Commands							 regex(1F)

NAME

       regex - match patterns against a string

SYNOPSIS

       regex [-e] [ -v "string"] [ pattern template] ... pattern [template]

DESCRIPTION

       The  regex  command  takes a string from the standard input, and a list of pattern / template pairs, and runs regex() to compare the string
       against each pattern until there is a match.  When a match occurs, regex writes the corresponding  template  to	the  standard  output  and
       returns	TRUE.  The  last  (or  only) pattern does not need a template. If that is the pattern that matches the string, the function simply
       returns TRUE. If no match is found, regex returns FALSE.

       The argument pattern is a regular expression of the form described in regex(). In most cases, pattern should be enclosed in  single  quotes
       to turn off special meanings of characters. Note that only the final pattern in the list may lack a template.

       The  argument template may contain the strings $m0 through $m9, which will be expanded to the part of pattern enclosed in ( ... )$0 through
       ( ...  )$9 constructs (see examples below). Note that if you use this feature, you must be sure to enclose template  in	single	quotes	so
       that  FMLI does not expand $m0 through $m9 at parse time. This feature gives regex much of the power of	cut(1), paste(1), and grep(1), and
       some of the capabilities of sed(1). If there is no template, the default is $m0$m1$m2$m3$m4$m5$m6$m7$m8$m9.

OPTIONS

       The following options are supported:

       -e	       Evaluates the corresponding template and writes the result to the standard output.

       -v "string"     Uses string instead of the standard input to match against patterns.

EXAMPLES

       Example 1: Cutting letters out of a string

       To cut the 4th through 8th letters out of a string (this example will output strin and return TRUE):

       `regex -v "my string is nice" '^.{3}(.{5})$0' '$m0'`

       Example 2: Validating input in a form

       In a form, to validate input to field 5 as an integer:

       valid=`regex -v "$F5" '^[0-9]+$'`

       Example 3: Translating an environment variable in a form

       In a form, to translate an environment variable which contains one of the numbers 1, 2, 3, 4, 5 to the letters a, b, c, d, e:

       value=`regex -v "$VAR1" 1 a 2 b 3 c 4 d 5 e '.*' 'Error'`

       Note the use of the pattern '.*' to mean "anything else".

       Example 4: Using backquoted expressions

       In the example below, all three lines constitute a single backquoted expression. This expression, by itself, could be put in a menu defini-
       tion  file. Since backquoted expressions are expanded as they are parsed, and output from a backquoted expression (the cat command, in this
       example) becomes part of the definition file being parsed, this expression would read /etc/passwd and make a dynamic menu of all the  login
       ids on the system.

       `cat /etc/passwd | regex '^([^:]*)$0.*$' '
       name=$m0
       action=`message "$m0 is a user"`'`

DIAGNOSTICS

       If none of the patterns match, regex returns FALSE, otherwise TRUE.

NOTES

       Patterns  and  templates  must often be enclosed in single quotes to turn off the special meanings of characters. Especially if you use the
       $m0 through $m9 variables in the template, since FMLI will expand the variables (usually to "") before regex even sees them.

       Single characters in character classes (inside []) must be listed before character ranges, otherwise they will not be recognized. For exam-
       ple, [a-zA-Z_/] will not find underscores (_) or slashes (/), but [_/a-zA-Z] will.

       The regular expressions accepted by regcmp differ slightly from other utilities (that is, sed, grep, awk, ed, and so forth).

       regex with the -e option forces subsequent commands to be ignored. In other words, if a backquoted statement appears as follows:

	      `regex -e ...; command1; command2`

       command1 and command2 would never be executed. However, dividing the expression into two:

	      `regex -e ...``command1; command2`

       would yield the desired result.

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWcsu			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       awk(1), cut(1), grep(1), paste(1), sed(1), regcmp(3C), attributes(5)

SunOS 5.10							    12 Jul 1999 							 regex(1F)
All times are GMT -4. The time now is 03:57 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy