Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: OSX verify username and password in one line
Operating Systems OS X (Apple) OSX verify username and password in one line Post 302749907 by Corona688 on Sunday 30th of December 2012 01:43:30 AM
Old 12-30-2012
The system is designed to make this difficult, because the functionality you want would be as convenient for malicious password bruteforcing as it would be for more benign purposes. The system goes to some length to guarantee that password prompts get typed into by human beings in realtime. You may need the third-party expect brute-forcing tool to make it possible to hijack them so they aren't.

If you do get it working, it may be a severe security hole because of the way things in ps are liable to show their commandline parameters.
Last edited by Corona688; 12-30-2012 at 02:50 AM..
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

username password in script

Can we write a script to telnet to a unix server from unix with the username and password hardcoded in the script?? something like ssh a@b -p password ??? (5 Replies)
Discussion started by: roshanjain2
5 Replies

2. Shell Programming and Scripting

verify sudo password

edited and removed (0 Replies)
Discussion started by: mdpalow
0 Replies

3. UNIX for Advanced & Expert Users

password verification verify password of a user for only first 8 characters

Helo , I m using linux pam library for user and its password authentication. I m creating new user and giving its password.I m giving password of 10 characters.now when I login in as that newly created user its ask me $ su - ram Password: You are required to change your password immediately... (12 Replies)
Discussion started by: amitpansuria
12 Replies

4. OS X (Apple)

OSX asks password but i don't use a password!!

When i try to install some software OSX asks for a password but i don't use a password at all. Somebody knows a answer please??? asta (4 Replies)
Discussion started by: astapopulos
4 Replies

5. UNIX for Dummies Questions & Answers

How can i hide username/password

hi all, i run sqlplus command on unix(HP-UX) like "sqlplus username/password@serverA @deneme.sql" but when someone run "ps -ef | grep sqlplus", it can see my username and password :( How can i hide username and password. thanx. (1 Reply)
Discussion started by: temhem
1 Replies

6. Shell Programming and Scripting

FTP command line username and password passing

Dear All, I am new to unix and I am trying to build a shell script which will connect to a different server by passing username and password from a file or command line but not manually... In short I dont want to connect to a diff server via ftp interactively. Any suggestion...looking... (8 Replies)
Discussion started by: Pratik4891
8 Replies

7. Solaris

solaris 8 reset root password from OSX

Hello, I have two old Solaris machines $ uname -a SunOS unknown 5.8 Generic_117350-39 sun4u sparc SUNW,UltraAX-e2 unfortunately, it has been so long ago that i have used these that the root password has left my head... i can log into one of the machine as a normal user, but am unable to... (4 Replies)
Discussion started by: Norman Khine
4 Replies

8. Shell Programming and Scripting

Username and password

Hi I am new to using unix and am struggling with a script i am writing. What i am trying to do is get a user to enter a username, check the original file i created with username and pin to see if their is a corresponding entry. Next ask the user to enter the pin and see if this matches... (5 Replies)
Discussion started by: somersetdan
5 Replies

9. UNIX for Dummies Questions & Answers

How do you reset username/password

Picked up a 3b2 running System V. Works fine, but it requires a username and password. Is the username "root" or "sysadm"? How do I find out and how to I reset it or bypass it? Thanks. (2 Replies)
Discussion started by: TanRuNomad
2 Replies

10. Shell Programming and Scripting

Logging in with Username/Password on one line

Hello, I am currently working on a project that requires me to remote login into another UNIX system using different credentials. The problem is that progamatically I cannot simply feed the password into the UNIX system. Is there a way to feed the password within one command line statement. I... (1 Reply)
Discussion started by: myoung88
1 Replies

LEARN ABOUT CENTOS

gpasswd

GPASSWD(1)							   User Commands							GPASSWD(1)

NAME

       gpasswd - administer /etc/group and /etc/gshadow

SYNOPSIS

       gpasswd [option] group

DESCRIPTION

       The gpasswd command is used to administer /etc/group, and /etc/gshadow. Every group can have administrators, members and a password.

       System administrators can use the -A option to define group administrator(s) and the -M option to define members. They have all rights of
       group administrators and members.

       gpasswd called by a group administrator with a group name only prompts for the new password of the group.

       If a password is set the members can still use newgrp(1) without a password, and non-members must supply the password.

   Notes about group passwords
       Group passwords are an inherent security problem since more than one person is permitted to know the password. However, groups are a useful
       tool for permitting co-operation between different users.

OPTIONS

       Except for the -A and -M options, the options cannot be combined.

       The options which apply to the gpasswd command are:

       -a, --add user
	   Add the user to the named group.

       -d, --delete user
	   Remove the user from the named group.

       -h, --help
	   Display help message and exit.

       -Q, --root CHROOT_DIR
	   Apply changes in the CHROOT_DIR directory and use the configuration files from the CHROOT_DIR directory.

       -r, --remove-password
	   Remove the password from the named group. The group password will be empty. Only group members will be allowed to use newgrp to join
	   the named group.

       -R, --restrict
	   Restrict the access to the named group. The group password is set to "!". Only group members with a password will be allowed to use
	   newgrp to join the named group.

       -A, --administrators user,...
	   Set the list of administrative users.

       -M, --members user,...
	   Set the list of group members.

CAVEATS

       This tool only operates on the /etc/group and /etc/gshadow files.  Thus you cannot change any NIS or LDAP group. This must be performed on
       the corresponding server.

CONFIGURATION

       The following configuration variables in /etc/login.defs change the behavior of this tool:

       ENCRYPT_METHOD (string)
	   This defines the system default encryption algorithm for encrypting passwords (if no algorithm are specified on the command line).

	   It can take one of these values: DES (default), MD5, SHA256, SHA512.

	   Note: this parameter overrides the MD5_CRYPT_ENAB variable.

       MAX_MEMBERS_PER_GROUP (number)
	   Maximum members per group entry. When the maximum is reached, a new group entry (line) is started in /etc/group (with the same name,
	   same password, and same GID).

	   The default value is 0, meaning that there are no limits in the number of members in a group.

	   This feature (split group) permits to limit the length of lines in the group file. This is useful to make sure that lines for NIS
	   groups are not larger than 1024 characters.

	   If you need to enforce such limit, you can use 25.

	   Note: split groups may not be supported by all tools (even in the Shadow toolsuite). You should not use this variable unless you really
	   need it.

       MD5_CRYPT_ENAB (boolean)
	   Indicate if passwords must be encrypted using the MD5-based algorithm. If set to yes, new passwords will be encrypted using the
	   MD5-based algorithm compatible with the one used by recent releases of FreeBSD. It supports passwords of unlimited length and longer
	   salt strings. Set to no if you need to copy encrypted passwords to other systems which don't understand the new algorithm. Default is
	   no.

	   This variable is superseded by the ENCRYPT_METHOD variable or by any command line option used to configure the encryption algorithm.

	   This variable is deprecated. You should use ENCRYPT_METHOD.

       SHA_CRYPT_MIN_ROUNDS (number), SHA_CRYPT_MAX_ROUNDS (number)
	   When ENCRYPT_METHOD is set to SHA256 or SHA512, this defines the number of SHA rounds used by the encryption algorithm by default (when
	   the number of rounds is not specified on the command line).

	   With a lot of rounds, it is more difficult to brute forcing the password. But note also that more CPU resources will be needed to
	   authenticate users.

	   If not specified, the libc will choose the default number of rounds (5000).

	   The values must be inside the 1000-999,999,999 range.

	   If only one of the SHA_CRYPT_MIN_ROUNDS or SHA_CRYPT_MAX_ROUNDS values is set, then this value will be used.

	   If SHA_CRYPT_MIN_ROUNDS > SHA_CRYPT_MAX_ROUNDS, the highest value will be used.

FILES

       /etc/group
	   Group account information.

       /etc/gshadow
	   Secure group account information.

SEE ALSO

       newgrp(1), groupadd(8), groupdel(8), groupmod(8), grpck(8), group(5), gshadow(5).

shadow-utils 4.1.5.1						    05/25/2012								GPASSWD(1)
All times are GMT -4. The time now is 05:55 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy