Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Changing Passwords with a script.
Operating Systems Solaris Changing Passwords with a script. Post 302567022 by agama on Friday 21st of October 2011 08:29:10 PM
Old 10-21-2011
You've hit the nail on the head. The slant in the original pattern is causing your grief. The format of the sed substitute command is:

s<delim>pattern<delim>replacement<delim>

The delim character can be anything, but it cannot occur in the pattern. By having a pattern with a slant, you're "marking" the end of the pattern early, and then you're tossing in extra information that sed is complaining about.

Assuming that you're using Kshell or bash, then something like this would work:

Code:
test1=$(grep $lognam shadow);
test2=$(grep $lognam shadow.changed);
sed "s/${test1//\//\\/}/${test2//\//\\/}/" > shadow.modified;

The shell magic converts all forward slants in test1 and test2 into "\/" combinations which escape the slant when sed reads the string. It should now be fine. And if there aren't any slants, then the string is not affected.

---------- Post updated at 20:29 ---------- Previous update was at 20:03 ----------

It just occurred to me that you might need to escape other characters on the pattern side. Specifically the dot (.) and splat (*) need to be escaped. These additional lines should do the trick.

Code:
test1=$(grep $lognam shadow);
test2=$(grep $lognam shadow.changed);
test1="${test1//./\\.}"
test1="${test1//\*/\\*}"
sed "s/${test1//\//\\/}/${test2//\//\\/}/" > shadow.modified;

This User Gave Thanks to agama For This Post:
brownwrap
 

8 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

passwords changing

Hello everyone let me start off by saying happy new year to all I am new to this board. I am running a multipurpose server (web/ftp/email) it runs apache 1.3.20 i think it is and Qmail would I would like to do is find/create a script that will allow my users to change there unix password... (1 Reply)
Discussion started by: viperws
1 Replies

2. UNIX for Advanced & Expert Users

Changing Users Passwords Via Script?

I am the administrator for a large network of HP/UX servers, about 100, this will be growing to over 200 in the next 18 months, part of my duties are to change the root passwords on these machines once month... which is a pain. I have written a script that will generate random passwords for me and... (3 Replies)
Discussion started by: PJolliffe
3 Replies

3. Shell Programming and Scripting

Perl script - changing passwords

Just wanted options of this - first 'real' Perl script and I'm not positive of all the quirks in Perl. Any suggestions are welcome. Especially since I'm messing with /etc/shadow! Running Solaris 2.6, Perl 5.005.03 #!/u/bin/perl # # Change the user's old password to the new in /etc/shadow ... (3 Replies)
Discussion started by: thehoghunter
3 Replies

4. Shell Programming and Scripting

changing passwords remotely on sun boxes

now, for reasons i really cant begin to delve into, i have to find a way to be able to rmeotely create user accounts and also assign them passwords. unfortunately, it appears Sun boxes frowns upon this. sun boxes will let u create a user account remotely but will never let u assign the useraccount... (0 Replies)
Discussion started by: Terrible
0 Replies

5. Shell Programming and Scripting

idea for script - cheking passwords

Hi All, I am looking for scripts where i need check normal user password and root password for more 100 servers from single server...! let me explin it what exacltly i need...! i need to do password audit for more than 600 boxes... :o for one normal user and root password also...... (5 Replies)
Discussion started by: bullz26
5 Replies

6. UNIX for Advanced & Expert Users

Monitoring the changing of passwords

What is the best way to monitor who changes passwords, or what passwords get changed? Is there a way to send that over to Syslog? An example would be someone logs in as themselves, changes to root (which I capture by loging auth and auth.info) and then changes a password. Do I need to put an... (1 Reply)
Discussion started by: AW12
1 Replies

7. Shell Programming and Scripting

script for changing passwords

Hello, We are running aix 5.3. We're looking for a script that can change passwords, taking 2 arguments ( old password, new password ). I am wondering if this can be done with a here document, or some generic scripting method. Or, if I would have to download expect. Alternatively I wonder... (3 Replies)
Discussion started by: fwellers
3 Replies

8. UNIX for Advanced & Expert Users

When did UNIX start using encrypted passwords, and not displaying passwords when you type them in?

I've been using various versions of UNIX and Linux since 1993, and I've never run across one that showed your password as you type it in when you log in, or one that stored passwords in plain text rather than encrypted. I'm writing a script for work for a security audit, and two of the... (5 Replies)
Discussion started by: Anne Neville
5 Replies

LEARN ABOUT DEBIAN

chpasswd

CHPASSWD(8)						    System Management Commands						       CHPASSWD(8)

NAME

       chpasswd - update passwords in batch mode

SYNOPSIS

       chpasswd [options]

DESCRIPTION

       The chpasswd command reads a list of user name and password pairs from standard input and uses this information to update a group of
       existing users. Each line is of the format:

       user_name:password

       By default the passwords must be supplied in clear-text, and are encrypted by chpasswd. Also the password age will be updated, if present.

       By default, passwords are encrypted by PAM, but (even if not recommended) you can select a different encryption method with the -e, -m, or
       -c options.

       Except when PAM is used to encrypt the passwords, chpasswd first updates all the passwords in memory, and then commits all the changes to
       disk if no errors occured for any user.

       When PAM is used to encrypt the passwords (and update the passwords in the system database) then if a password cannot be updated chpasswd
       continues updating the passwords of the next users, and will return an error code on exit.

       This command is intended to be used in a large system environment where many accounts are created at a single time.

OPTIONS

       The options which apply to the chpasswd command are:

       -c, --crypt-method METHOD
	   Use the specified method to encrypt the passwords.

	   The available methods are DES, MD5, NONE, and SHA256 or SHA512 if your libc support these methods.

	   By default, PAM is used to encrypt the passwords.

       -e, --encrypted
	   Supplied passwords are in encrypted form.

       -h, --help
	   Display help message and exit.

       -m, --md5
	   Use MD5 encryption instead of DES when the supplied passwords are not encrypted.

       -R, --root CHROOT_DIR
	   Apply changes in the CHROOT_DIR directory and use the configuration files from the CHROOT_DIR directory.

       -s, --sha-rounds ROUNDS
	   Use the specified number of rounds to encrypt the passwords.

	   The value 0 means that the system will choose the default number of rounds for the crypt method (5000).

	   A minimal value of 1000 and a maximal value of 999,999,999 will be enforced.

	   You can only use this option with the SHA256 or SHA512 crypt method.

	   By default, the number of rounds is defined by the SHA_CRYPT_MIN_ROUNDS and SHA_CRYPT_MAX_ROUNDS variables in /etc/login.defs.

CAVEATS

       Remember to set permissions or umask to prevent readability of unencrypted files by other users.

CONFIGURATION

       The following configuration variables in /etc/login.defs change the behavior of this tool:

       SHA_CRYPT_MIN_ROUNDS (number), SHA_CRYPT_MAX_ROUNDS (number)
	   When ENCRYPT_METHOD is set to SHA256 or SHA512, this defines the number of SHA rounds used by the encryption algorithm by default (when
	   the number of rounds is not specified on the command line).

	   With a lot of rounds, it is more difficult to brute forcing the password. But note also that more CPU resources will be needed to
	   authenticate users.

	   If not specified, the libc will choose the default number of rounds (5000).

	   The values must be inside the 1000-999,999,999 range.

	   If only one of the SHA_CRYPT_MIN_ROUNDS or SHA_CRYPT_MAX_ROUNDS values is set, then this value will be used.

	   If SHA_CRYPT_MIN_ROUNDS > SHA_CRYPT_MAX_ROUNDS, the highest value will be used.

	   Note: This only affect the generation of group passwords. The generation of user passwords is done by PAM and subject to the PAM
	   configuration. It is recommended to set this variable consistently with the PAM configuration.

FILES

       /etc/passwd
	   User account information.

       /etc/shadow
	   Secure user account information.

       /etc/login.defs
	   Shadow password suite configuration.

       /etc/pam.d/chpasswd
	   PAM configuration for chpasswd.

SEE ALSO

       passwd(1), newusers(8), login.defs(5), useradd(8).

shadow-utils 4.1.5.1						    05/25/2012							       CHPASSWD(8)
All times are GMT -4. The time now is 03:20 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy