Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
10-22-2012, 09:23 AM
|
#1
|
Member
Registered: Oct 2010
Posts: 606
Rep:
|
Password-Less User Account
Hi Guys,
How do we create a user account (unprivileged) without needing a password to log-in?
I need to do this on Solaris 10 and CentOS. I am not meaning SSH here which can be configured to achieve this purpose.
Thanks in advance!
|
|
|
10-22-2012, 09:28 AM
|
#2
|
Moderator
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417
|
you can formally delete a password as root "passwd -d username" but it's such a bad idea in general...
|
|
|
10-23-2012, 05:54 AM
|
#3
|
Senior Member
Registered: Dec 2004
Location: Marburg, Germany
Distribution: openSUSE 15.2
Posts: 1,339
|
Quote:
Originally Posted by acid_kewpie
you can formally delete a password as root "passwd -d username" but it's such a bad idea in general...
|
...and therefore some PAM modules will need nullok as option too to allow it.
|
|
|
10-23-2012, 10:24 AM
|
#4
|
Member
Registered: Oct 2010
Posts: 606
Original Poster
Rep:
|
Quote:
Originally Posted by acid_kewpie
you can formally delete a password as root "passwd -d username" but it's such a bad idea in general...
|
I did that and when I logged in using the log-in id (demo, for example), I was prompted for the password and not allowed to log-in without entering one.
|
|
|
10-23-2012, 10:29 AM
|
#5
|
Senior Member
Registered: Dec 2004
Location: Marburg, Germany
Distribution: openSUSE 15.2
Posts: 1,339
|
Depending on the PAM modules you use, you can try to add in the necessary /etc/pam.d files for the password check:
Code:
password requisite pam_pwcheck.so nullok cracklib remember= no_obscure_checks
password required pam_unix2.so use_authtok nullok
|
|
|
10-23-2012, 10:44 AM
|
#6
|
Member
Registered: Oct 2010
Posts: 606
Original Poster
Rep:
|
Quote:
Originally Posted by Reuti
Depending on the PAM modules you use, you can try to add in the necessary /etc/pam.d files for the password check:
Code:
password requisite pam_pwcheck.so nullok cracklib remember= no_obscure_checks
password required pam_unix2.so use_authtok nullok
|
How do I check what PAM Module is in place on my system? I am using, for example, CentOS 6.3 Linux.
|
|
|
10-23-2012, 10:46 AM
|
#7
|
Senior Member
Registered: Dec 2004
Location: Marburg, Germany
Distribution: openSUSE 15.2
Posts: 1,339
|
Check the path I posted, and then the file with the access method like SSH you use.
|
|
|
10-23-2012, 10:50 AM
|
#8
|
LQ Guru
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 10,861
|
In addition, I wouldn't do this at all unless you know that the user will be running a restricted shell, e.g. for a kiosk of some kind. Don't give them a command-prompt . . .
|
|
|
All times are GMT -5. The time now is 01:37 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|