Questions regarding password-based authentication and password management
13
votes
2answers
589 views
SSH ignores characters after correct password string?
Remote machine 10.10.10.1 has password "asdFGH12" for user named "user". I'm able to log in even if I type in password "asdFGH12dasdkjlkjasdus" or any other characters after the "asdFGH12" string.
$ ...
1
vote
1answer
67 views
Where does Samba 4 store user passwords?
Where does Samba 4 store user passwords? How can I import my password hashes from Samba 3 in Samba 4?
I am using my own LDAP server with samba 3, and the password hash is stored within the ...
2
votes
1answer
80 views
How to password-less log on via ssh alias
Suppose I have access to pc via a server. I can directly log-on to pc by using How do I connect to a pc through another pc using ssh
Such that my .ssh/config looks like:
Host short
Hostname pc
User ...
1
vote
1answer
103 views
Rehashing /etc/shadow. Can I force NIS users to change password?
I'm currently migrating a CentOS environment to a Debian one. The users log in over the network using NIS. I was hoping to copy /etc/shadow from my old server to my new one so that we can offer ...
1
vote
1answer
75 views
How to safely put user typed password into a file?
Is there any way to put the password typed by user into a file (either in Unix or in expect).
read -s -p "enter password" input
echo $input > file
Is the above code safe?
I want to use that ...
1
vote
1answer
68 views
Can pwgen output passwords of a certain length?
I'm using the command line tool pwgen to generate passwords because I love the repeatability you get with the sha1 command line flag. To quote the man page:
-H, --sha1=/path/to/file[#seed]
...
4
votes
2answers
64 views
Determining the Password Status of a User
I have a debian box that I connect to via SSH. I have removed the password from the users root, and my personal account using the instructions here, and set up a public/private key pair so I can log ...
2
votes
3answers
85 views
newgrp asks for password [duplicate]
I don't understand why newgrp prompts me for password when I want to change my group. I don't even know what password it is asking for but certainly not mine (user clime).
$ id
uid=500(clime) ...
0
votes
0answers
49 views
Rss feed notifications in gnome 3
Is there a way to configure Gnome 3 notifications to display password protected RSS feed? Or maybe it is possible to configure another RSS reader to use gnome 3 notifications? It seems to me an ...
1
vote
1answer
100 views
Setting the root password vs. sudo -i
Should one always set a root password, or is sudo -i acceptable? Two problems is in reading other posts (maybe junk I realize):
sudo -i eliminates the need for a password. Isn't that a problem for ...
2
votes
1answer
408 views
How to enter/choose session after logout without password in (Linux Mint) Xfce?
I have Linux Mint 14 Xfce (4.10) and have also installed LXDE desktop, so I can choose between these sessions if I want. Normally I would set one as default and at startup I am not asked for ...
2
votes
1answer
57 views
Apache boot without asking for passwd
So I'm maintaining a server which has a verified SSL certificate setup, however there is a password on the private key and so whenever apache is reboot, we get a message asking for the password. This ...
2
votes
1answer
89 views
Debian Log In Failure With Correct Password
So I have a Debian distro at home (considering getting ubuntu), and I can't login. When I use the correct password is does this thing where it makes it look like it's going to login, and then it ...
1
vote
1answer
113 views
Is it possible for sudo to read password from gnome-keyring or similar
I'm currently using sudo a lot in a bunch of scripts, which is turning into a bit of a hassle, as some scripts does not allow interactive input (e.g., Makefiles).
Instead of disabling sudo passwords ...
1
vote
2answers
248 views
Max password size in AIX 6.1
I found on the AIX documentation some rules to set about passwords length :
minlen Defines the minimum length of a password. The value is a decimal integer string. The default is a value of 0, ...
0
votes
1answer
98 views
run 'service php5-fpm restart' without using sudo
I am integrating my cakephp projects using jenkins.
Right now, I am exploring the use of Phing. There is one task where I need to run
service php5-fpm restart
So far I tried to do this manually. ...
5
votes
3answers
249 views
Remote shell script Enter passphrase for
How can I run a script to log into a remote server and execute a remote ssh command without entering in my passphrase?
For example:
When I log onto a remote server and execute the git pull command I ...
4
votes
1answer
331 views
Why ssh-copy-id prompts for the local user password three times?
Noticed from my previous question that when trying to copy an SSH public key to a remote host via ssh-copy-id, I am prompted for the local user password three times:
ssh-copy-id myuser@myserver
...
3
votes
3answers
445 views
How to take 'password' like input in shell script? [duplicate]
Possible Duplicate:
How to hide commands typed in a Linux shell?
Reading passwords without showing on screen in Bash Scripts
I would like to take a password as input, but I want user to ...
4
votes
1answer
167 views
Encrypt word X to /etc/shadow encryption
I've changed my password to X and the shadow file has changed to:
ahmad:$1$oYINSKjP$eCkCtJV/2dXerAD57WQPj/:15425:0:99999:7:::
I see the encrypted X as $1$oYINSKjP$eCkCtJV/2dXerAD57WQPj/. How can I ...
1
vote
2answers
119 views
Tracing RHEL system hack
I have an RHEL 5.7 installation in the lab and someone changed the root password (either by linux single or some other mode). I would like to identify how was it done and basically be able to identify ...
5
votes
2answers
243 views
Pipe Password to Application When Asked
The following should be done in a bash script:
curl --digest --user schmijos https://bitbucket.org/u/p/get/tip.zip -o tip.zip
How can I automatically submit a password to curl when it asks for it? ...
0
votes
1answer
102 views
Jboss application startup and shutdown asks for password. Howto automate with init script?
Jboss application startup and shutdown of BMC-IDM asks for password (called keystore password, some Java stuff).
Howto automate with init script?
Stop application
> stop_idm_suite.sh
Suite ...
2
votes
3answers
346 views
Stracing su and ssh shows the password. Is this a security flaw or am I missing something?
I'm currently fascinated by strace so, being new to it, I decided to play around a little. As suggested by the question title, I tried both strace su and strace ssh. Both commands displayed the ...
2
votes
1answer
120 views
I try to add passwords to the “pass” password manager. But my attempts fail with “no public key” GPG errors. Why?
I am trying to install Pass: the standard Unix password manager, however, when I try to add passwords to the appliation I get these errors
gpg: Kelly's Passwords: skipped: No public key
gpg: [stdin]: ...
1
vote
1answer
846 views
SCP and/or SSH command with password in line
First, I'm TRYING to use rsa keys because I'm using the script to create RSA keys, but initially I have to connect to the remote machine to pass over the newly generated authentication key. Having ...
2
votes
0answers
75 views
Samba passwords expiring in x days - how do we fix them to not expire
We use OpenLDAP and Samba v3. Recently some Samba-defined users (no accounts on the shared linux server) started being listed in logwatch as having their passwords come up to "will expire"...I ...
0
votes
1answer
234 views
Difference between passwd and passwd- file [duplicate]
Possible Duplicate:
Who creates /etc/{group,gshadow,passwd,shadow}-?
I have a strange passwd- file in /etc, notice the trailing dash:
root@ubuntu:~# ls /etc/passw*
/etc/passwd ...
1
vote
3answers
306 views
Ask root for password when using su command
I'm trying to edit /etc/sudoers via visudo, but I don't know how to change the root rights.
I want root to be prompted for the user1's password, when he tries to use su user1.
2
votes
2answers
191 views
Finding root password
I installed a Ubuntu and it only has a user. I can login to the system without login. It doesn't ask me for un/pwd. but when I am in, and I want to run some commands as root (sudo), it ask for ...
1
vote
3answers
488 views
Shell script to become root
How can we write a shell script to become root?
That is I donot want to input the password at prompt it should be within the script itself. I was trying to make but failed to do so.Is it possible, if ...
2
votes
2answers
1k views
How to create SHA512 password hashes on command line
In Linux I can create a SHA1 password hash using sha1pass mypassword. Is there a similar command line tool which lets me create sha512 hashes? Same question for Bcrypt and PBKDF2.
2
votes
1answer
108 views
Security drawbacks of disabling tty password check
I found that, in /etc/inittab, this modification (-a username) for the user u disables the login/password check for all tty:s:
1:2345:respawn:/sbin/getty -a u 38400 tty1
2:23:respawn:/sbin/getty -a u ...
1
vote
2answers
1k views
How to remove root password on Debian?
I'm running Debian in a virtual machine and for convenience I would like to remove the password on root (since it doesn't really matter what happens to this box). Internet hasn't been too helpful on ...
2
votes
3answers
330 views
Another account with same uid as root gets prompted to set new password for root, not itself
After upgrading the os from 5300-06 to 5300-11, this weird behaviour happened.
My system had another unix account, let's call it "abc", purposely configured its uid to 0 for working as a root with ...
3
votes
1answer
152 views
Can linux use a mix of SHA-1 and CRYPT passwords?
We have an automated sync-routine that uses useradd to create new users on a Ubuntu 10.04 machine. The application launching the routine provided both username and CRYPT-encrypted password. However, ...
1
vote
1answer
120 views
add new language to /usr/share/dict/words
In this directory I have English dict and my language file, but where I can download other language? Or maybe you known other free dictionary? I need to make list of word that are not in the ...
1
vote
1answer
515 views
Can I automate mounting a cifs share without storing my password in plaintext?
I currently use a script which contains commands along the lines of
sudo /sbin/mount.cifs $SERVER_SHARE $MOUNT -o username=$DOMAIN_$USER,uid=$USER,gid=$USER,file_mode=0664,dir_mode=0775
to mount my ...
0
votes
1answer
162 views
Force users to change email password every six months
I'm going to build an experimental mail server with Postfix + Dovecot and Mysql for user accounts.
The server will offer SMTP + POP3 + IMAP.
Is there a way to force users to change their mail account ...
7
votes
1answer
531 views
In /etc/group what is the meaning of the second field?
A sample /etc/group file contains the following entries:
root:*:0:
adm:!:4:logcheck
antoine:x:1000:
The man pages I've read (Debian & OSX) says the second field is to store a group password. ...
1
vote
2answers
1k views
Ubuntu password policy
I want to set the system-wide password policy on an Ubuntu 12.04 LTS server. Googling around, a lot of people point to this (very old) document:
...
1
vote
1answer
1k views
How to list and filter Samba users that need a password change?
Apparently, I can find out whether a Samba user needs a password change or not with the following command:
pdbedit -v -u userid | grep "Password must change"
I also see I can list all the Samba ...
3
votes
1answer
437 views
Validate AIX Password for root from script
Looking for a way in a shell script to validate the password for for root on an (AIX) matches a standardized plain text password. This query is similar to another one on this site. I have access to ...
3
votes
3answers
270 views
Encrypt a password the same way mysql does
I've created a user ... but forgotten the password
mysql> create user 'blayo'@'%' identified by 'right';
Which Linux command line tool can encrypt the password the same way mysql 5.5 does ?
...
1
vote
1answer
108 views
How do I keep KDE from asking new users for a password when I use /etc/skel to set up their enviroment?
I made this nice custom KDE setup on Arch Linux with customised settings like desktop background, panel settings, kwin settings, etc. I heard that if you copy all the hidden files from your ...
1
vote
1answer
135 views
password problem when feeding a remote file into diff
When I want to compare a local file with a remote file, any of these usually works:
$ ssh remote cat file | diff file -
$ diff file <(ssh remote cat file)
However, sometimes (especially when the ...
5
votes
1answer
212 views
Automated ssh login with passphrase?
Logging onto a machine over ssh typically requires a password to be entered before access is granted. Alternatively, a key/certificate (without a passphrase) can be installed onto the remote machine ...
4
votes
2answers
217 views
Password protecting a system file? (e.g. /etc/resolv.conf)
I am trying to parental control myself by restricting web access via OpenDNS. The OpenDNS account password will be handed to someone trustworthy. Now, I want to put some restriction on the ...
4
votes
2answers
2k views
Disable svn plaintext password storage for all users
By default, Subversion allows users to save their password in plaintext in ~/.subversion/auth/svn.simple. I'm investigating options for storing encrypted passwords in svn, but at the very least and ...
2
votes
1answer
1k views
How to create a user with given password on SuSE from command line?
I need to create bunch of new users with given password. What I want is a script that I would pass the user name of new user and it will create/add the user and set its password. (the password is the ...
