Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Odd behavior from passwd.
Special Forums Cybersecurity Odd behavior from passwd. Post 303038999 by gull04 on Thursday 19th of September 2019 07:53:46 AM
Old 09-19-2019
Odd behavior from passwd.
Hi Folks,

Before I go off and start checking I'm just wondering if anyone has seen this behaviour before.

Code:
[root@fbakirpomd4 ~]# passwd e825390
Changing password for user e825390.
New password:
Retype new password:
Retype new password:
passwd: all authentication tokens updated successfully.

As you can see there is an extra "Retype new Password", the system is;
Code:
[root@fbakirpomd4 ~]# uname -a
Linux fbakirpomd4 3.10.0-862.el7.x86_64 #1 SMP Wed Mar 21 18:14:51 EDT 2018 x86_64 x86_64 x86_64 GNU/Linux
[root@fbakirpomd4 ~]# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 7.5 (Maipo)
[root@fbakirpomd4 ~]#

The system has been built and a new "Security Standard" applied, this was done as a result of a "Security Audit" by a company called CGI.

This will cause an issue with a number of the standard accounts that we have on the servers going forward, the idea is to have a standard build so it has to be correct - one problem that I can foress is that the passwords are changed on the aforementioned accounts using an expect script and the second "Retype new Password" will break the script.

So I thought that I'd ask here before I raise an incident with Red Hat support.

Regards

Gull04
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

even odd script

I need a unix script that check for even or odd. EXAMPLE:::: please enter the number to check: 12 the output: This is an even number it has to have prompts. (2 Replies)
Discussion started by: snyper2k2
2 Replies

2. UNIX for Dummies Questions & Answers

Odd .sh behavior in script

Hello, I have been working on a what I thought was a fairly simple script for installing a software kit on Linux and Unix I am not new to scripting but am far from being fluent in sh scripting. any assistance would be appreciated. I have an odd bug occuring when executing the script. When... (2 Replies)
Discussion started by: robertmcol
2 Replies

3. HP-UX

Odd storage behavior

Hi, We have some troubles with our HP server (rx4640) running HP-UX 11.31. The server is attached to a JBod cabinet. If the JBod cabinet is powered on and we power on the server after then HP-UX can't find the devices (disks) at the cabinet. Does not help to run an ioscan -fnC disk. But if I power... (3 Replies)
Discussion started by: hoff
3 Replies

4. Shell Programming and Scripting

"Odd" behavior exiting shell script

Is it normal behavior for a shell script that terminates to terminate its parent shell when executed with the "." option? For example, if I have the example script (we'll name it ex.sh): #!/bin/sh if then echo "Bye." exit 2 fi And I execute it like this: >./ex.sh It... (6 Replies)
Discussion started by: DreamWarrior
6 Replies

5. UNIX for Dummies Questions & Answers

Finding the odd one out!

Hi guys, I wondered if someone would be able to help me. I have a number of files which all have entries in them looking something like; And I'm looking for a way where by I can compare a number of these files and identify the odd numbers in the sequence. So for example if I had to... (1 Reply)
Discussion started by: JayC89
1 Replies

6. Solaris

passwd cmd reenables passwd aging in shadow entry

Hi Folks, I have Solaris 10, latest release. We have passwd aging set in /etc/defalut/passwd. I have an account that passwd should never expire. Acheived by emptying associated users shadow file entries for passwd aging. When I reset the users passwd using passwd command, it re enables... (3 Replies)
Discussion started by: BG_JrAdmin
3 Replies

7. AIX

When did AIX start using /etc/security/passwd instead of /etc/passwd to store encrypted passwords?

Does anyone know when AIX started using /etc/security/passwd instead of /etc/passwd to store encrypted passwords? (1 Reply)
Discussion started by: Anne Neville
1 Replies

8. Solaris

Odd vi error

Hello, I have a weird think going on, on one of my servers. vi filename "/var/tmp" No such file or directory What going on here? (4 Replies)
Discussion started by: bitlord
4 Replies

9. Programming

Odd behavior from GDB while trying to cross-debug an embedded Linux application.

Some background: The application normally runs on an embedded platform. Currently, for development purposes, I have the rootfs located @ /exports and the target is communicating over NFS. That way I can make a change on my local system, save the application @ /exports, and run the altered... (4 Replies)
Discussion started by: Circuits
4 Replies

LEARN ABOUT REDHAT

passmass

PASSMASS(1)						      General Commands Manual						       PASSMASS(1)

NAME

       passmass - change password on multiple machines

SYNOPSIS

       passmass [ host1 host2 host3 ...  ]

INTRODUCTION

       Passmass  changes a password on multiple machines.  If you have accounts on several machines that do not share password databases, Passmass
       can help you keep them all in sync.  This, in turn, will make it easier to change them more frequently.

       When Passmass runs, it asks you for the old and new passwords.  (If you are changing root passwords and have equivalencing, the	old  pass-
       word is not used and may be omitted.)

       Passmass  understands  the  "usual"  conventions.   Additional  arguments may be used for tuning.  They affect all hosts which follow until
       another argument overrides it.  For example, if you are known as "libes" on host1 and host2, but "don" on host3, you would say:

	    passmass host1 host2 -user don host3

       Arguments are:

	      -user
		  User whose password will be changed.	By default, the current user is used.

	      -rlogin
		  Use rlogin to access host.  (default)

	      -slogin
		  Use slogin to access host.

	      -telnet
		  Use telnet to access host.

	      -program

		  Next argument is a program to run to set the password.  Default is "passwd".	Other  common  choices	are  "yppasswd"  and  "set
		  passwd"  (e.g.,  VMS hosts).	A program name such as "password fred" can be used to create entries for new accounts (when run as
		  root).

	      -prompt
		  Next argument is a prompt suffix pattern.  This allows the script to know when the shell is prompting.  The default is "# "  for
		  root and "% " for non-root accounts.

	      -timeout
		  Next argument is the number of seconds to wait for responses.  Default is 30 but some systems can be much slower logging in.

	      -su

		  Next	argument is 1 or 0.  If 1, you are additionally prompted for a root password which is used to su after logging in.  root's
		  password is changed rather than the user's.  This is useful for hosts which do not allow root to log in.

HOW TO USE

       The best way to run Passmass is to put the command in a one-line shell script or alias.	Whenever you get a new account on a  new  machine,
       add the appropriate arguments to the command.  Then run it whenever you want to change your passwords on all the hosts.

CAVEATS

       Using  the  same  password on multiple hosts carries risks.  In particular, if the password can be stolen, then all of your accounts are at
       risk.  Thus, you should not use Passmass in situations where your password is visible, such as across a network which hackers are known	to
       eavesdrop.

       On  the	other  hand,  if you have enough accounts with different passwords, you may end up writing them down somewhere - and that can be a
       security problem.  Funny story: my college roommate had an 11"x13" piece of paper on which he had listed accounts and passwords all  across
       the  Internet.	This  was  several  years worth of careful work and he carried it with him everywhere he went.	Well one day, he forgot to
       remove it from his jeans, and we found a perfectly blank sheet of paper when we took out the wash the following day!

SEE ALSO

       "Exploring Expect: A Tcl-Based Toolkit for Automating Interactive Programs" by Don Libes, O'Reilly and Associates, January 1995.

AUTHOR

       Don Libes, National Institute of Standards and Technology

								  7 October 1993						       PASSMASS(1)
All times are GMT -4. The time now is 11:22 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy