Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Need script to monitor change in /etc/passwd
Top Forums Shell Programming and Scripting Need script to monitor change in /etc/passwd Post 302553978 by jim mcnamara on Friday 9th of September 2011 10:47:21 AM
Old 09-09-2011
Three steps, all run as root:
Code:
cd
cksum /etc/passwd | awk '{print $1}' > passwd.cksum
chmod 700 passwd.cksum

Create this script:
Code:
#!/bin/ksh
cd
value=$(cksum /etc/passwd | awk '{print $1}' )
value2=$( < passwd.cksum)
[ "$value2" = "$value" ] && exit  # everything is okay
/usr/bin echo "/etc/passwd changed" | /usr/bin/mailx -s '/etc/passwd alert'     me@mycompany.com
echo "$value2" > passwd.cksum   # prevent redundant error messages

Don't forget to test it first, and chmod +x your script.

Have it run every 10 minutes-- enter with crontab -e, which should put you in vi:
Code:
0,10,20,30,40,50 * * * *  /path/to/the/script/above/myscript.sh 2> /path/to/log

 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

User should not be allowed to change passwd

Hi Group, Can anyone assist me with this? I am on AIX 5.2 ML06. I create the user and assign a passwd. But I do not want the user to change the passwd at all. I like him/her to use the passwd that I have set for him/her. Any ideas would be highly appreciated!!! Thanks. (3 Replies)
Discussion started by: brookingsd
3 Replies

2. UNIX for Dummies Questions & Answers

Need to change root passwd

I booted up Sun V240 server with boot cdrom -s using the Sun Operating System CD. I now am at the # prompt and su - root . The system will not allow me to set password for root. Get following error: # passwd New Password: xxxxxxxx Re-enter new Password: xxxxxxxx passwd: Unexpected failure. ... (4 Replies)
Discussion started by: mayewil
4 Replies

3. UNIX for Advanced & Expert Users

change passwd remotely in solaris 10

i'm trying to change passwd remotely in unix (solaris) and tried using "expect" but it is not working. Any ideas to change the passwd remotely using a shell script? (1 Reply)
Discussion started by: pharos467
1 Replies

4. Shell Programming and Scripting

ksh script to change passwd

Hello All, I am trying to change a user passwd (one time password): cat /tmp/passwd mnop1234 mnop1234 #passwd abcd < /tmp/passwd (for some reason, it is not able to input the password from /tmp/passwd and comes back with "New Password: ") Is there a work around except using "expect". ... (1 Reply)
Discussion started by: solaix14
1 Replies

5. Solaris

Force user to change passwd on first login

Hello All, How to force user to change his login passwd on his first login in solaris 10 ? while adding user do we need to set the password in theis case?? (7 Replies)
Discussion started by: saurabh84g
7 Replies

6. Solaris

Change passwd for bulk servers using SSH script

Hi, I need to Change passwd for bulk servers using SSH script. I have one server, from which i can reach all the servers without password via SSH. There is some expect script, from which i can achieve it. Can any one help me out here. Thanks in advance. Vicky (1 Reply)
Discussion started by: vickyingle5
1 Replies

7. UNIX for Dummies Questions & Answers

How to edit /etc/passwd file to change the comment

Hi All, I need to change the comment field in /etc/passwd file for one userid in my RHEL linux m/cs. I tried to open the file in vi editor and changed the comment, but next day it's getting reverted back again. :-( mitchell:x:1000:900:Jon Mitchell User:/home/mitchell:/bin/bash I need to... (2 Replies)
Discussion started by: NARESH1302
2 Replies

8. Shell Programming and Scripting

Help required to write shell script to change passwd

Hi All, I wanted to write a shell script which will change the expired passwd in oracle. Here is below what I am trying, #!/bin/sh set -x ORACLE_HOME="/optware/oracle/9.2.0.2_64" SQLPLUS="${ORACLE_HOME}/bin/sqlplus" PASS="xyz" PATH=$ORACLE_HOME/bin:$PATH... (0 Replies)
Discussion started by: gr8_usk
0 Replies

9. Solaris

Unable to change the passwd

bash-3.00# passwd sami New Password: Re-enter new Password: Dec 14 00:07:43 hack passwd: passwdutil: crypt_gensalt Invalid argument passwd: Unexpected failure. Password database unchanged. Permission denied i got this error while i am change the user(sami) passwd. (3 Replies)
Discussion started by: samiulla
3 Replies

10. Solaris

Can't change users passwd

Have an issue with a user or root changing the user's passwd. We run the passwd command and a complex passwd is entered a message is displayed, "passwd is based on a dictionary word." We do have a dictionary file and I know for a fact the complex passwd is not in the list. This happens on a... (3 Replies)
Discussion started by: solizkewl
3 Replies

LEARN ABOUT MINIX

mail

MAIL(1) 						      General Commands Manual							   MAIL(1)

NAME

       mail - send and receive electronic mail

SYNOPSIS

       mail [-dpqrv] [-f file] [user]

OPTIONS

       -d     Force use of the shell variable MAILER

       -f     Use file instead of /usr/spool/mail/user as mailbox

       -p     Print all mail and then exit

       -q     Quit program if SIGINT received

       -r     Reverse print order, i.e., print oldest first

       -v     Verbose mode

EXAMPLES

       mail ast 	   # Send a message to ast

       mail		   # Read your mail

DESCRIPTION

       Mail  is  an  extremely simple electronic mail program.	It can be used to send or receive email on a single MINIX system, in which case it
       functions as user agent and local delivery agent.  If the flag MAILER is defined in mail.c, it can also call a transport  agent	to  handle
       remote mail as well.  No such agent is supplied with MINIX.

       When  called  by  user  with no arguments, it examines the mailbox /usr/spool/mail/user, prints one message (depending on the -r flag), and
       waits for one of the following commands:

	 <newline> Go to the next message
	 -	   Print the previous message
	 !command  Fork off a shell and execute command
	 CTRL-D    Update the mailbox and quit (same as q)
	 d	   Delete the current message and go to the next one
	 q	   Update the mailbox and quit (same as CTRL-D)
	 p	   Print the current message again
	 s [file]  Save message in the named file
	 x	   Exit without updating the mailbox

       To send mail, the program is called with the name of the recipient as an
       argument.  The mail is sent, along with a postmark line containing the date.
       For local delivery, a file named after the recipient in the directory
       /usr/spool/mail must be writable.

       If the directory /usr/spool/mail does not exist then the mail is
       dumped on the console, so that system programs have a way to notify
       a user on a system that does not have a mail spool.

																	   MAIL(1)
All times are GMT -4. The time now is 07:39 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy