Questions regarding password-based authentication and password management
4
votes
1answer
33 views
Manually generate password for /etc/shadow
I need to manually edit /etc/shadow to change the root password inside of a virtual machine image.
Is there a command-line tool that takes a password and generates an /etc/shadow compatiable password ...
1
vote
0answers
20 views
Graphically ask for password in a bash script and retain default sudo timeout setting
The sudo -A (SUDO_ASKPASS) option apparently causes sudo to lose the timeout (e.g., timestamp_timeout) setting.
I want to use the sudo -A option but I want to retain the default timeout (e.g., 15 ...
1
vote
1answer
11 views
kinit returns error salt type 3 unsupported on FreeBSD 9.1-RELEASE install
When attempting to run kinit to log into a Kerberos V5 realm I get the following error on a default install FreeBSD 9.1-RELEASE
kinit: krb5_get_init_creds: salt type 3 not supported
Any ideas?
3
votes
1answer
70 views
Is it a bad idea to add myself to the sudo group?
Members of the sudo group in my Debian install can execute anything without entering a password. This is convenient, but seems like a bad idea.
NOTE: My computer is an ordinary desktop, not a server ...
3
votes
1answer
74 views
sudo command executes without prompting for password
For some reason, I suddenly do not need to enter the password when issuing sudo some_cmd.
Entered command just runs without ever prompting password, even if I am not logged in as user root. Commands ...
2
votes
2answers
36 views
Avoid “Authentication token manipulation error” on password change
I'm implementing a security policy that will force the users to introduce stricter passwords when they change their own:
The /etc/pam.d/passwd configuration file is:
#%PAM-1.0
auth include ...
0
votes
1answer
47 views
can't ssh into remote host with root, password incorrect
I have a remote host,
previously I can ssh into it with root and password
ssh root@remote_host
or I ssh into it first using a regular user account
ssh esolve@remote_host
and then su root and ...
3
votes
3answers
153 views
Securely feeding a program with a password
After understanding the problem with using a password in the command line, I need to find a way of feeding a program with a password without it being a problem (without the password being recorded ...
24
votes
3answers
2k views
Why shouldn't someone use passwords in the command line?
Why do people fear writing passwords in the command line?
The history file is located in ~/.history, so it's available only to the user who executed the commands (and root).
1
vote
1answer
89 views
How to lock users after 5 unsuccessful login tries?
How to lock users after 5 unsuccessful login tries?
I gathered a few distributions/versions to how to do it, but I can't test it.
RHEL4: by adding the:
auth required ...
2
votes
1answer
91 views
How to change the forgotten root password?
I am very new to Debian linux, I forgot my root password...actually I think I know what it is because it is the same password I have for pretty much everything but in the Terminal in tell me "Sorry, ...
3
votes
0answers
48 views
Restrict usage of the same password during a time period
I need to configure a server with some requisites on the password changing: in addition to other requisites, I need to ensure that, on a password change, it is not repeated (last 5 passwords) and ...
2
votes
1answer
42 views
How to run john parallel on several CPU's?
If I use:
john --incremental UNSHADOWEDFILE
then I can see it uses only 1 CPU. How can I set john to use several CPU's for finding the weak passwords? (need to find weak ones faster because of an ...
13
votes
2answers
443 views
How long is the password for executing a command with sudo cached?
If I run a command which requires root privileges with sudo, I will be asked to enter the current user's password. After that for a while, if I execute the same sort of commands with sudo, I won't be ...
2
votes
1answer
102 views
Change Password of a user in /etc/shadow
I would like to change the password of a user in the /etc/shadow.
I can't use password changing programs like passwd. It must be done by editing the /etc/shadow.
The /etc/shadow is on a mounted hard ...
2
votes
2answers
78 views
Equivalent of “passwd -sa” in RHEL?
I feel a little silly having to ask this, but: In Solaris you can issue a passwd -sa command which gives you (more or less) the same output as passwd -S userName does, except it prints out the status ...
2
votes
1answer
47 views
Nemo: Forget encryption password
I have mounted an encrypted disk by selecting it in Nemo (1.1.2), then typing a password. I can unmount the disk using Nemo, but now it can be remounted without requiring the password.
Probably ...
1
vote
0answers
125 views
samba 4 force user
I have a directory with files owned by Linux user quux. I want to give access to it over CIFS using Samba 4 for two persons so they have different usernames foo and bar and passwords but access the ...
2
votes
1answer
101 views
wpa_supplicant store password as hash (WPA-EAP with phase2=“auth=PAP”)
Is there a way to store my password in /etc/wpa_supplicant/wpa_supplicant.conf as some hash instead of plaintext?
By "password" I refer here to the password used for phase2 authentification. I do not ...
13
votes
2answers
723 views
SSH ignores characters after correct password string?
Remote machine 10.10.10.1 has password "asdFGH12" for user named "user". I'm able to log in even if I type in password "asdFGH12dasdkjlkjasdus" or any other characters after the "asdFGH12" string.
$ ...
1
vote
1answer
236 views
Where does Samba 4 store user passwords?
Where does Samba 4 store user passwords? How can I import my password hashes from Samba 3 in Samba 4?
I am using my own LDAP server with samba 3, and the password hash is stored within the ...
2
votes
1answer
134 views
How to password-less log on via ssh alias
Suppose I have access to pc via a server. I can directly log-on to pc by using How do I connect to a pc through another pc using ssh
Such that my .ssh/config looks like:
Host short
Hostname pc
User ...
1
vote
1answer
245 views
Rehashing /etc/shadow. Can I force NIS users to change password?
I'm currently migrating a CentOS environment to a Debian one. The users log in over the network using NIS. I was hoping to copy /etc/shadow from my old server to my new one so that we can offer ...
1
vote
1answer
118 views
How to safely put user typed password into a file?
Is there any way to put the password typed by user into a file (either in Unix or in expect).
read -s -p "enter password" input
echo $input > file
Is the above code safe?
I want to use that ...
1
vote
1answer
122 views
Can pwgen output passwords of a certain length?
I'm using the command line tool pwgen to generate passwords because I love the repeatability you get with the sha1 command line flag. To quote the man page:
-H, --sha1=/path/to/file[#seed]
...
4
votes
2answers
73 views
Determining the Password Status of a User
I have a debian box that I connect to via SSH. I have removed the password from the users root, and my personal account using the instructions here, and set up a public/private key pair so I can log ...
2
votes
3answers
165 views
newgrp asks for password [duplicate]
I don't understand why newgrp prompts me for password when I want to change my group. I don't even know what password it is asking for but certainly not mine (user clime).
$ id
uid=500(clime) ...
0
votes
0answers
107 views
Rss feed notifications in gnome 3
Is there a way to configure Gnome 3 notifications to display password protected RSS feed? Or maybe it is possible to configure another RSS reader to use gnome 3 notifications? It seems to me an ...
2
votes
1answer
126 views
Setting the root password vs. sudo -i
Should one always set a root password, or is sudo -i acceptable? Two problems is in reading other posts (maybe junk I realize):
sudo -i eliminates the need for a password. Isn't that a problem for ...
2
votes
1answer
756 views
How to enter/choose session after logout without password in (Linux Mint) Xfce?
I have Linux Mint 14 Xfce (4.10) and have also installed LXDE desktop, so I can choose between these sessions if I want. Normally I would set one as default and at startup I am not asked for ...
2
votes
1answer
67 views
Apache boot without asking for passwd
So I'm maintaining a server which has a verified SSL certificate setup, however there is a password on the private key and so whenever apache is reboot, we get a message asking for the password. This ...
2
votes
1answer
137 views
Debian Log In Failure With Correct Password
So I have a Debian distro at home (considering getting ubuntu), and I can't login. When I use the correct password is does this thing where it makes it look like it's going to login, and then it ...
1
vote
2answers
166 views
Is it possible for sudo to read password from gnome-keyring or similar
I'm currently using sudo a lot in a bunch of scripts, which is turning into a bit of a hassle, as some scripts does not allow interactive input (e.g., Makefiles).
Instead of disabling sudo passwords ...
1
vote
2answers
314 views
Max password size in AIX 6.1
I found on the AIX documentation some rules to set about passwords length :
minlen Defines the minimum length of a password. The value is a decimal integer string. The default is a value of 0, ...
0
votes
1answer
121 views
run 'service php5-fpm restart' without using sudo
I am integrating my cakephp projects using jenkins.
Right now, I am exploring the use of Phing. There is one task where I need to run
service php5-fpm restart
So far I tried to do this manually. ...
5
votes
3answers
271 views
Remote shell script Enter passphrase for
How can I run a script to log into a remote server and execute a remote ssh command without entering in my passphrase?
For example:
When I log onto a remote server and execute the git pull command I ...
4
votes
1answer
456 views
Why ssh-copy-id prompts for the local user password three times?
Noticed from my previous question that when trying to copy an SSH public key to a remote host via ssh-copy-id, I am prompted for the local user password three times:
ssh-copy-id myuser@myserver
...
3
votes
3answers
848 views
How to take 'password' like input in shell script? [duplicate]
Possible Duplicate:
How to hide commands typed in a Linux shell?
Reading passwords without showing on screen in Bash Scripts
I would like to take a password as input, but I want user to ...
4
votes
1answer
223 views
Encrypt word X to /etc/shadow encryption
I've changed my password to X and the shadow file has changed to:
ahmad:$1$oYINSKjP$eCkCtJV/2dXerAD57WQPj/:15425:0:99999:7:::
I see the encrypted X as $1$oYINSKjP$eCkCtJV/2dXerAD57WQPj/. How can I ...
1
vote
2answers
135 views
Tracing RHEL system hack
I have an RHEL 5.7 installation in the lab and someone changed the root password (either by linux single or some other mode). I would like to identify how was it done and basically be able to identify ...
5
votes
2answers
315 views
Pipe Password to Application When Asked
The following should be done in a bash script:
curl --digest --user schmijos https://bitbucket.org/u/p/get/tip.zip -o tip.zip
How can I automatically submit a password to curl when it asks for it? ...
0
votes
1answer
120 views
Jboss application startup and shutdown asks for password. Howto automate with init script?
Jboss application startup and shutdown of BMC-IDM asks for password (called keystore password, some Java stuff).
Howto automate with init script?
Stop application
> stop_idm_suite.sh
Suite ...
3
votes
3answers
431 views
Stracing su and ssh shows the password. Is this a security flaw or am I missing something?
I'm currently fascinated by strace so, being new to it, I decided to play around a little. As suggested by the question title, I tried both strace su and strace ssh. Both commands displayed the ...
2
votes
1answer
161 views
I try to add passwords to the “pass” password manager. But my attempts fail with “no public key” GPG errors. Why?
I am trying to install Pass: the standard Unix password manager, however, when I try to add passwords to the appliation I get these errors
gpg: Kelly's Passwords: skipped: No public key
gpg: [stdin]: ...
1
vote
1answer
916 views
SCP and/or SSH command with password in line
First, I'm TRYING to use rsa keys because I'm using the script to create RSA keys, but initially I have to connect to the remote machine to pass over the newly generated authentication key. Having ...
2
votes
1answer
92 views
Samba passwords expiring in x days - how do we fix them to not expire
We use OpenLDAP and Samba v3. Recently some Samba-defined users (no accounts on the shared linux server) started being listed in logwatch as having their passwords come up to "will expire"...I ...
0
votes
1answer
313 views
Difference between passwd and passwd- file [duplicate]
Possible Duplicate:
Who creates /etc/{group,gshadow,passwd,shadow}-?
I have a strange passwd- file in /etc, notice the trailing dash:
root@ubuntu:~# ls /etc/passw*
/etc/passwd ...
1
vote
3answers
347 views
Ask root for password when using su command
I'm trying to edit /etc/sudoers via visudo, but I don't know how to change the root rights.
I want root to be prompted for the user1's password, when he tries to use su user1.
2
votes
2answers
207 views
Finding root password
I installed a Ubuntu and it only has a user. I can login to the system without login. It doesn't ask me for un/pwd. but when I am in, and I want to run some commands as root (sudo), it ask for ...
1
vote
3answers
668 views
Shell script to become root
How can we write a shell script to become root?
That is I donot want to input the password at prompt it should be within the script itself. I was trying to make but failed to do so.Is it possible, if ...
