Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm thinking to ask this in the forum regarding automatically prompt new user to change password upon logging in. Users are being authenticated by LDAP server using Fedora 6 and I used webmin so that I could get a gui interface....
Really, and what happens after they change their passwords. Do you think they will get any shell to work on ater that? And do you really want the users to change their passwords every-single-day!!??
I guess the question was to force users to change their passwords on their first logon attempt and not all the damn they login ...
Rite mate?
Quote:
Originally Posted by derekalan18
if you want them to be prompted to change their password when logging in, just change their log-in shell to /bin/passwd
I quote the relevant stuff here...
====================================================================================
-E, --expiredate EXPIRE_DATE
Set the date or number of days since January 1, 1970 on which the user's account will no longer be accessible. The date may also be expressed in the format YYYY-MM-DD (or the format more commonly used in your area). A user whose account is locked must contact the system administrator before being able to use the system again.
====================================================================================
Ya true ... if u want the users to be prompted for changing their passswords on their first logon attempt, just expire all user accounts, so that they will prompted to change their passswords on their first logon attempt
do this >>
chage -E 0 user_name (This will expire the user, cuz 0 stands for Jan 1,1970)
chage -E -1 user_name makes the user account expire NEVER
chage -E YYYY-MM-DD .. use this to expire the user account on the day you want it to ...
Just check out the manual page for the chage command ... that would fit all ur requirements I am sure ...
This is fine if you want the user to have to contact the system admin to change their password.
"-E, --expiredate EXPIRE_DATE
Set the date or number of days since January 1, 1970 on which the user's account will no longer be accessible. The date may also be expressed in the format YYYY-MM-DD (or the format more commonly used in your area). A user whose account is locked must contact the system administrator before being able to use the system again. "
How can one force a password change so the user can enter the new password without contacting the admin?
Like on HPux or Sun systems(not 5.8 - bug), you can use the passwd -f userid, thus when user logs in and enters the temporary password, they are then prompted to enter a new password.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.