shexp(1) General Commands Manual shexp(1)Name
shexp - display password expiration information for a user
Syntax
shexp [-q] [username]
Description
The command is used to display a user's password expiration information. The specified username, or logname if no username is supplied, is
converted to a UID by searching through the passwd file. The UID is then used to look up the user's entry in the Auth Data Base. The
password expiration information is then printed out in format.
% shexp
Expires Tue Dec 6 10:49:18 EST 1988
If the password has already expired the word Expires will be replaced with the word Expired. If password expiration is disabled for the
particular user in question the output of will be Never expires.
Options-q Instead of displaying the expiration date and time in format, outputs it as three decimal numbers: the minimum password lifetime, the
maximum password lifetime, and the password modification time. All three numbers are displayed as they are found in the database.
Restrictions
Only the super-user may obtain information about users with UIDs other than the real UID of the invoking process.
Diagnostics
User not found in passwd data base.
There is no entry in for the specified username.
Cannot stat auth file.
The database is missing (security features may not be enabled).
Insufficient privilege.
An insufficiently privileged user is asking for information about a username with a UID different then their current real-UID.
An exit value of 0 indicates a successful operation, any other exit status indicates an error.
FilesSee Alsopasswd(1), getauthuid(3), auth(5)
Security Guide for Users
shexp(1)
Check Out this Related Man Page
passwd(1) General Commands Manual passwd(1)Name
passwd - create or change password
Syntax
passwd [-aefs] [name]
Description
The command lets you or the superuser change your password. When you enter the command, the program prompts you for the old password and
then for the new password. Next, the program asks you for the new password again, to verify that you have typed it correctly. Note that
the passwords are not displayed on the screen.
Your new password must meet the length requirements specified by the superuser. To review these requirements, refer to the file. (This is
a read-only file.)
If your system is running with increased security, you may have to choose a password from a list of randomly generated passwords, or you
may need authorization to change your password. At higher security levels, you may be prohibited from changing your password until its
minimum lifetime has expired, as specified in the Authorization Database.
If you are running the BIND/Hesiod service, your password will be updated automatically on the server.
Options-a Supply a list of randomly generated passwords. (See the Examples section.)
-e Use an extended protocol when communicating with a prompter program. As a result, the standard input and output (used by is sent to
this program.
-f Change the finger information, not the password. The finger program provides information about current ULTRIX users, such as login and
terminal name, idle time and office location.
-s Change the login shell of the password file, not the password entry.
Restrictions
If you use a hardcopy terminal, you must destroy all print outs of valid passwords.
Examples
The following example illustrates the -a option, which displays a list of randomly generated passwords and their suggested pronunciation
with hyphens. The hyphens delineate the syllables of the passwords:
passwd -a abcd
Changing password for abcd
Here are some suggested passwords:
ryegd ryeg-di
aswurku a-swurk-u
ryedok ryed-ok
teleccs tel-ec-cos
wahislas wa-hi-slas
Enter new password:
Diagnostics
Password must be at least 6 characters long, password unchanged
Your password does not meet the minimum length requirement specified in
Warning: Only the first 8 characters of the password are significant
Your password exceeds the maximum length requirement specified in
Permission denied
You do not have the privilege to change your password. The minimum lifetime has not expired.
Password is not different enough, unchanged
Your new password must be different from your old password.
Password must be different than logname, and not resemble previous password
Your new password must be different from your login name.
Verification failed, password unchanged
You misspelled the verification of your new password.
Files
Password file
Authorization data base directory
Authorization data base page
Data base service selection and security configuration file
Only the superuser and members of the group can access the and files.
See Alsochfn(1), chsh(1), finger(1), login(1), shexp(1), yppasswd(1yp), passwd(5yp), edauth(8), vipw(8)
Guide to System Environment Setup
Security Guide for Users
Security Guide for Administrators
"Password Security: A Case History", Supplementary Documents, Volume 3: System Manager
passwd(1)