[clug] banning passwords in passwd
Tomasz Ciolek
tmc at vandradlabs.com.au
Wed Nov 15 09:41:24 GMT 2006
mmm - isn't that what PAM stuff for shadow password stuff is for ?
Tomasz Ciolek
On Wed, Nov 15, 2006 at 05:09:40PM +1100, Michael James wrote:
> Is there anything I can do to stop Linux passwd command
> EVER putting a password into /etc/passwd?
>
> A lot of my users are authenticated of Active Directory
> and so don't have or need entries in /etc/shadow.
> And it makes the shadow file shorter and more readable
> if users without passwords, don't have entries.
>
> But if any of them run "passwd", it responds by putting the
> (encrypted) password in the world-readable /etc/passwd file.
>
> There's not much I miss about Solaris,
> but it had the sense to fail a passwd command
> if there was no existing entry in shadow.
>
> Do any of the things-you-see filling the password field
> x ! N s - mean "This user is not allowed a password".
>
> michaelj
>
>
>
> --
> There is no perl one line hack
> that a page of java won't do more elegantly.
> --
> linux mailing list
> linux at lists.samba.org
> https://lists.samba.org/mailman/listinfo/linux
--
Tomasz M. Ciolek
*******************************************************************************
tmc at vandradlabs dot com dot au
*******************************************************************************
GPG Key ID: 0x41C4C2F0
GPG Key Fingerprint: 3883 B308 8256 2246 D3ED A1FF 3A1D 0EAD 41C4 C2F0
Key available on good key-servers
*******************************************************************************
More information about the linux
mailing list