In the /etc directory, I have two passwd files. One is "passwd", the other is "passwd-". When I use the function adduser or deluser, these two files are always modified. Can someone tell me the difference between both ? Do I really need "passwd-" ?
View 1 RepliesI have a Debian 5.0.7 installed to my server. I try to install Apache and SVN to this server. I use this tutorial: http://www.howtoforge.com/subversion...-ubuntu-server
But is unfortunately not working.
My apache virtual host configuration file is:
Code:
This passwd file containing 1 user:
Code:
The rights for the passwd file:
Code:
And apache2 is running like this:
Code:
And if I try to login to my page I got an "Internal Server Error" page.
And my error is in the apache log is this:
Code:
So I'm a little bit confused about it. The apache2 should have rights to open this file. I checked it, the file is exist and the apache2 is have rights for it. I don't understand it.
we know that /etc/passwd - is a replica of /etc/passwd file and acts as a backup in any damage done to /etc/passwd file..i have observed a strange thing in RHEL 5.4....for example... if /etc/passwd has 100 accounts.. then /etc/passwd - is having only 99 accounts....when i add 101 useraccount with "useradd" then /etc/passwd has 101 accounts and /etc/passwd is having the 100th account of /etc/passwd - ..when i delete /etc/passwd and recover it with /etc/passwd - from runlevel 1 the lastly created user is not having his account after recovery.. what is the solution? this is same case even with /etc/shadow and /etc/shadow -
View 2 Replies View RelatedWell we all know that it holds passwords. But cat-ing it gives out nothing. Not even encrypted gibberish. So how exactly is a password stored in this? Is this like a device file or something?
View 4 Replies View RelatedI was doing some experiment about resource-accessing. By mistake, I executed this command,$ sudo mv /etc/passwd /etc/passwd.bakThen I could not execute any command with privilege(eg. sudo mv /etc/passwd.bak /etc/passwd). When I shut the system down, I could not boot it any more.
View 2 Replies View RelatedI got a user account on a linux network. But when I look in the /etc/passwd file, I don't see my username there. Where would I find my username
View 3 Replies View RelatedUnfortunately i lost my passwd file...so who to recover that.
View 8 Replies View RelatedI have a list of locked accounts, called lockedusers, how can I with a bash script compare it to /etc/passwd on the server and print them out if they match?
View 2 Replies View Relatedcreating a script which evaluates whether or not the passwd file has changed.
View 4 Replies View RelatedI deleted root from passwd and shadow file.Can I crate a new root user?
View 1 Replies View RelatedI work for a seismic company that has recently experienced a security issue. Because we have an isolated network that is used for HPC work we have a very open security structue ie password less accounts rsh rlogin etc. We had, seemingly,a user that has maliciously deleted another user's files but I still haven't figured out how. So far I have been able to prove that this user has remotely logged into another host under that user's account... or at least that their workstation did. The /var/log/message file shows logins from their workstation as that user multiple times durring the times that these files were being deleted. There are wildcard searches for these files in the history in this host. There is a vi session initiated on this host for a file called delme (delete me) and then a chmod +x for this file. and then a deletion of this file (rm delme). Funny things: this user has no business in this acct. this user was bounced off the other host (permission denied) when trying to log into the other host and then as root logged into the other host as the other acct. repeatedly... ie. rsh -l xxx (permis den) then as root rsh -l xxx (logged in) why not su xxx and then rsh? password less acct?! why use root privs (which they sholuld not have) to log into a passwd less acct? Can't see any remote logins to their workstation from elsewhere. can't find smoking gun. no execution of delme script or any other rm /*/xxx/* sort of command that proves when file deletion of striped files happened?!
changing root passwd soon.need proof that no remote logins to a CentOS 5.3 workstation could be responsible.
Could mean someone gets fired.how can I be sure that no other users logged into this machine and then into another machine for sure?
What is the easiest way to replace a hash in a shadow file for one particular user, not using passwd, and when the current password is unknown?
View 3 Replies View Relatedthe last filed of /etc/passwd file is the login_shell;how if I replace it to /usr/bin/date
what would it happen.by the way I try to use $ subut do't know the password.what s the default root passworf for ubuntu
my debian laptop this morning ,saw that the update manager had updates..97 of them??? then when tried to view them the package manager freezes and becomes unresponsive. needed to do a few things and found my root password is NOT working. this all happened at the same time, i wonder if its related? have i been hacked? is this something new? cant reset root password (tried two methodeds with no luck) and cant view the updates altho i question 97 new updates are needed.
View 7 Replies View Relatedwhen loggin as a normal user and search for a file passwd under /etc. i get few errors with permission denied.how to ignore this permission denied errors.
csh hostname 109 % find . -name passwd
find: ./lvm/backup: Permission denied
find: ./lvm/archive: Permission denied
[code]....
i have just updated to openSuSE 11.4 [64 bit]; rkhunter is giving these Warnings :
Warning: User 'rtkit' has been added to the passwd file.
Warning: User 'pulse' has been added to the passwd file.
Warning: User 'statd' has been added to the passwd file.
Warning: Changes found in the group file for group 'audio': User 'pulse' has been added to the group
Warning: Group 'rtkit' has been added to the group file.
Warning: Group 'pulse' has been added to the group file.
Warning: Group 'pulse-access' has been added to the group file.
Warning: Suspicious file types found in /dev: /dev/shm/initrd_exports.sh: ASCII text
Warning: Hidden directory found: /dev/.sysconfig
Warning: Hidden directory found: /dev/.mount
Do these look Normal, Are these False-Positives??
I just installed Squeeze on an older PC. Installation seemed to go fine. But when it booted up on the installed system for the first time, I could not login - username/password failure. I tried every possible typing error and CAP LOCK error I could have made - still nothing.
I brought up a console window and tried logging in as root - same problem.
I booted into single user mode and entered passwd command to set new root password - I got a SYSTEM ERROR message from the passwd command.
I booted to a Live CD, went to /etc/shadow and deleted the encrypted password. Rebooted on the hard drive, went to console window and logged in as root, with no password required. So far so good. I entered passwd command to set new password and got the same SYSTEM ERROR message.
The machine seems fine when running on the Live CD, and the install seemed to go fine.
I edited the passwd file to modify the default shell for root from bash to tcshnow when I try to login to root it gives me the following error:"su: /bin/tcsh : No such file or directory"
View 3 Replies View Related[Code]....
Password: su: /bin/bash:/sbin: No such file or directory i cannot delete that entry from /etc/passwd as i cannot login as root.
The strangest thing happened. I installed Debian testing with the "squeeze Alpha1" netinstall cd. All seemed to go well and the installer made me pick a root password and create a normal user account. However, after the first boot my user account did not work and I could also not login as root, it looked liked I forgot the passwords for both accounts. When rebooted in recovery mode, I got Code: sulogin: root account is locked and I was automatically logged in as root without being asked for a password. Then I found out that the normal user account does not exist. I created a user acount and logged into it. I did passwd to set a password, but I got Code: passwd: Authentication token manipulation error Also, there was no home directory for the new user.
View 6 Replies View RelatedIf I configure a crontab like below.12 3 12 4 4 cat /etc/passwd I know that the cat command will get executed at the configured time. But where will the output of that command go?If it is something like below, then out put will be routed to /tmp/file1.12 3 12 4 4 cat /etc/passwd > /tmp/file1
View 4 Replies View RelatedI have an account on a remote Ubuntu machine. I started the vncserver on that box, it used display number 7. From my Windows machine, I connected to the remote box on port 5907. It connected, but said, "no password configured for vncauth". I noticed that the ~/.vnc/passwd file is empty, alongwith the log file. I typed vncpasswd to set the password again, but no use. I tried vncpasswd ~/.vnc/passwd as well, but no use.The VNC server is running.
View 1 Replies View Related/etc/passwd permissions keep getting reset to 600. When I set it to 644 as su, it eventually changes back.This occurs on my openSuse10.2 machine but not the openSuse 11.1 machine, but I assume that is irrelevant. Is there something that got tweaked that I need to change in Yast to stop this from happening?
View 5 Replies View RelatedAll servers mentioned below run OpenSuSE, either 10 or 11.I am currently working on a few scripts that are meant to be used as part of a continuous integration setup. I am trying to keep these scripts reasonably secure, and so I have made sure that all the servers run these scripts only as a specific user (user1) that has permissions to basically nothing else. The problem I am currently running into is that I need to start and stop tomcat as user1 but this user doesn't have permissions to the tomcat rectory (only tomcat has execute permissions). I have a temporary workaround in place while I work on the scripts (I have an SSH key in place that allows me to SSH from user1o tomcat without a password and execute my commands that way) but it is not very secure. I have tried adding the following line to /etc/sudoers:
Code:
tomcat localhost = NOPASSWD: /opt/tomcat/bin/startup.sh, /opt/tomcat/bin/shutdown.sh
but it doesn't work as I expected it to. I tried a few different syntaxes for that line,
[code]...
I'm running a small network of 20 PC's (slackware), I had previously used NIS and can't really be bothered with ldap it's a bit of hassle. I do not need a centralised database just a login auth system.On the server I make a folder called /sec and symlink passwd, group and shadow into it.I export this via nfs.On the workstation I create a folder /sec, move the passwd, group and shadow file into it and then symlink them back into the /etc folder.On bootup, the rc.local mounts server /sec over the top of workstation /sec. If it fails it falls back.I wasn't sure if I could just mount /sec on the workstation and then temporarily symlink group,passwd,shadow over the top of the /etc/shadow etc
View 4 Replies View RelatedIn what cases would a user appear in /etc/shadow and not /etc/passwd
View 2 Replies View Relatedwe are trying to make a policy decision whether to go with SSH user/passwd or PPK secure key ? our servers are hosted remotely by a hosting service. we were wondering which of these two models are more secure.e.g. i would tend to think that user/passwd with account lockouts upon failed attempts would be more secure because the other option exposes your server in case someone sneaks the PPK file or steals your whole computer.however, what makes me doubt myself is that Amazon Web Services EC2 cloud hosting uses PPK by default (although an instance's SSH config can be change to accommodate logging in but they don't endorse it).
View 3 Replies View RelatedI need to either locate a script that is similar to what I am needing or figure out a better way of doing what I need. I have mutiple shops with AIX unix servers, using ksh with virtual terminals that connect. since these are on an internal network we have them connecting to the server as either usr01, usr02, etc. what I need to do is add 15 user's ranging from usr01-usr15 into /etc/passwd each usr is identical in such that each line contains
Code:
usr01::0:0::/usr/tops:/bin/ksh
only difference is the usr# changes. I wrote a script where I was just adding these all to the /etc/passwd but now I have been tasked with adding them to these shops but with out any duplicates. is there any way to have a script check the file to see if the usr# exists and if so proceed to the next number and then input the usr#::0:0::/usr/tops:/bin/ksh into the file?
i'm using red hat enterprise linux 5,i want to know how can i break the grub passwd with out the use of live cd.
View 7 Replies View RelatedI have a web server running Centos5 on a Xeon processor with 2GB of RAM. Whenever I try to login as a user the system hangs.If I login as root I can login without any problems. I tried changing the passwd. I can change the passwd but still not able to login as that user. I tried creating a new user. When I run the command adduser or useradd the system hangs.
View 7 Replies View Related