I hope I am in the right forum. I have a question about restricting users from being able to change their own passwords in Fedora 10. In Fedora 6, I was able to do this by using passwd with -n and -x flags. If I would set the -n value greater than the -x value, then the user would not be able to change his/her own password. If I do this in Fedora 10, this no longer works
View 4 Replies
I'm trying to restrict a particular ssh user to his home directory, I'm just giving him access so that he can ssh to another server that is only accessible from the former but restrict his movement so that he can't poke around the former.I already made some changes to sshd_config file and added the following line at the end:
Did some test, user joe can ssh to the server but unable to do anything aside from logging in, even a simple ls command will immediately close the putty session. I know I'm still missing something but don't really know what it is.I also tried this how to that uses rssh --> http://www.adamhawkins.net/2009/05/r...ured/#more-431 however when I login the session immediately closes.
I'm looking for a user-friendly way to change the password of a user that is *not* currently logged into the machine. We have a machine that is used by a number of users with a low level of tech savvy. The machine gets logged in as a generic user which works for most purposes, but due to a management requirement, we need Firefox to be run under an account set up for the individual user. I've gotten that bit to work fine, but what I can't figure out is a friendly (GUI) way to allow users to change their own password while the machine is logged in as the generic user. I would like to use gnome-passwd, but I've been unable to figure out how to get it to run for a user other than the logged-in generic user.
View 7 Replies View RelatedI want to know, how does changes happened in the encrypted password in /etc/shadow file , when user changing password . because user doesnot have access on that file
View 1 Replies View RelatedMy problem is that I cant "rewrite" older password to new. It looks like I do:
Changing password for user johny.
New UNIX password:
Retype new UNIX password:
passwd: all authentication tokens updated successfully.
all looks OK but after set up new password I can log in using OLD and NEW password. It's very unsecure for me. So in fact I cant change password and it looks like centos create next password to one accout and one account have more then one password... how can I prevent it? pls help me couse its very unsecure in my case.user looks in file shadow /etc/shadow like this:
johny:6JWuwPcQiWCCM:14994:0:99999:7:::
in etc/passwd looks like this:
johny:x:20010:20011::/home/gs-world:/sbin/nologin
how to delete all old passwords?
I have searched somewhat this forum but haven't yet found a similar post using the keywords I entered but perhaps there is already a similar post then please refer me to it.I am trying to add a user account "Guest" to allow people on my laptop without giving them access to vital parts of the computer. Basically, I want them to only be able to view their own home directory and access internet. Nothing more.I have set the group to "guest" and changed the other home directories of other users to owner access only.
Guest still has access to root and is still allowed to perform actions in various critical areas (deleting files from for example my Windows 7 partition). This I also want to prevent. I was thinking to set each directory's permissions to Owner and Group only and remove Others access.My questions:
1. Will this have any undesirable impact (programs of main user accounts not able to access certain directories)? For guest user I don't care as long as internet works.
2. When I start User Manager and disable for Guest all options except "access internet" (so I also disable access to CDROM), the guest can still access the CDROM. Does this mean the User Settings menu has no effect or is overruled by something?
I want to limit the amount of connections a user can make outside of the box per user group, should I be doing this via iptables or what? aka:
group1 can only have 2 simultaneous outbound connections
group2 can only have 8
i want to Restrict a particular user from creating a file beyond a prticular size.ie he should not be able to create a prticular size [say 10mb] but he can use upto 10 gb.[ not the quota space i mean]
View 6 Replies View RelatedHow to recover user password and root password in fedora if u forget
View 2 Replies View RelatedWhen I installed Fedora selected the option to encrypt the hard drive. I want to change the passphrase, is there a way to change the passphrase, or do I have to re-install Fedora?
View 3 Replies View RelatedI am having some trouble logging into my machine: it seems to not accept my password. I am fairly sure I am typing it correctly. I can work around it easily enough by logging into the console and changing the password, but it is annoying.
View 6 Replies View RelatedI was setting up a Samba server and I ran into some problems with SELinux related to the context of the home directories. I made a user account, say "UserAccount", with a default home directory "home/UserAccount". Afterwards I realized that I needed to move the home directory of this particular user to another location, say "/home2/UserAccount". So I created the new directory, changed the permissions, and used Gnome's system-config-user to change the user's home directory.
I then set-up the Samba server, activated samba_run_unconfined and samba_enable_home_dirs in SELinux, and made an account for UserAccount. When testing the Samba account for UserAccount SELinux denied read access. I checked the context and the new home directory did not appeared to have been updated. I had to manually run:
restorecon -R -v /home2/UserAccount
to set the context on the new home directory. I'm not very familiar with SELinux, so my question is this: is this normal security policy or is a bug in the system-config-user tool? If it's normal policy can someone explain why? I'm always ready to learn Distro: Fedora 12 (kernel: 2.6.31.5-127.fc12.i686) System: Dual Intel Xeon @ 3.2 GHz, 1 GB RAM
created a user but i forgot to change the home directory permission.so after user created when i go to the user and group mangement i cant see that permission filed related to the home permission directory.my purpose is to stop accessing other user to my home directory,how it can be possible??
View 4 Replies View RelatedI have lost my password and user name for my installation of Fedora 8, i do not need to get it running again as i am preparing the pc for sale but i have several gigs of photos on there and i would like to rescue them if possible, i thought i might be able to do it with a live cd and copy the files on to a usb stick but wanted to ask firsts i am a real amateur ie i never managed to understand how every thing works really.It is in duel boot with win xp sp3 and i could not get to the photos from there
View 1 Replies View RelatedI am running Fedora 12 as Guest OS in VMware Player. I installed Fedora 12 by using a Prepackage VM . The root user name and p/w was supplied by the person who made this appliance. Is there way for me to change root user name and pw
View 2 Replies View RelatedI want to use root password instead of adding my user to the list of sudoers,In Arch wiki ander Root password:Users can configure sudo to ask for the root password instead of the user password by adding "rootpw" to the Defaults line in /etc/sudoers: but that did not work for me. it asks for root password.Why do I want to do that:
1. I want to do that, I like sudo more than su -c 'some_command'.
2. sudo enables bash completion, su -c does not.
3. I don't want to add my user to sudoers list.
I found many users Suggesting alternatives and lowering the important of my need for this, when I asked this question in anther please.
As the title says... (when using add/remove). Not sure how it got this way, so can't just put something back - need a way to correct it.
View 1 Replies View RelatedI am able to ftp the root of my EC2 instance of fc12 with a private key. I do not know what commands were given to fc12 to get it to act this way but that is okay, it works for me.
I have created accounts for my users and set a password for each of them. The problem is that I am unable to ftp fc12 with the user name and password. The error message I get says there is no supported authentication method available.
I presume I must somehow change server security or something to allow access to users with passwords but I do not know how to do this.
I need define a user /password for sasl but want the authentication at runtime be automatic - no explicit prompting the user while accessing a tcp socket with some applications that need the authentication (e.g libvirt)
so I try : saslpasswd2 -c -p -a libvirt <user>
and it hangs (if i now press Enter it says : "invalid parameter supplied") . if I avoid the -p flag the above commad works fine and prompts for password and later when using the tcp it prompts for the above defined user/password and autheticates ok .
But I want without the explicit authentication
The man pages says -p Pipe mode - saslpasswd2 will neither prompt for the password nor verify that it was entered correctly. This is the default when standard input is not a terminal.
In the past (before some upgrading of libvirt via rpm) I had the SASL authentication at runtime done automatically with no explicit prompting the user
I've got a question about chattr command. is it possible to restrict a root access for this command. what i want is something similar to freebsd behaviour aka the kernel secure level. setting a particular security level results in limiting some operations (i.e changing immutable flags on files) by root. well, if someone gained an access to a machine in some way, nothing would stop him changing the file's flags. so the question is if it can be achieved with selinux?
View 2 Replies View RelatedIt seem like unix abit annoying every time you log in you need to password can I disable it
View 10 Replies View Relatedtoday i got this message everytime i try to login to yahoo messenger:"gyachi invalid user or incorrect password !" The user and password are corect, if i switch to kopete or pidgin is all right.Only with gyachi i have that problem. Using Fedora 10, gyachi improved v1.2.3
View 3 Replies View RelatedI have webmin and usermin setup.Iam using dovecot and sendmail ,I can use usermin to login ,check or send emails.Outlook and thunderbird works as well.
But I want to use something for webmail. I am trying squirrelmail but it keeps saying invalid user and or password.
the error log reports
dovecot: imap-login: Aborted login (auth failed)
I have a problem with my fedora workstation.I am trying to change my ldap user password through passwd command.When I first create the user on ldap server, I use md5 and create the user password.This is the entry:
Code:
dn: uid=boo,ou=People,dc=linux,dc=gettolandia,dc=org
uid: boo
[code]....
having a hard time mapping a drive from a windows xp PC to a Linux Share. I have edited the SMB.conf file to include the share I want to connect to. when I try try map a drive to the Linux share using NET USE M: \192.168.15.5pairing I get the following error:"system error 1326 has occurred.Logon filaure: unknown user name or bad password."I use a username and password that is valid on the Linux server and has access to the Share.
View 2 Replies View RelatedMysql starting problem after changing mysqladmin password.I tried all the solutions available on forums, but not solve the problem.At last I restored the mysql db backup, this make mysql service start, but till other databases not showing all tables.
View 1 Replies View Relatedi changed my password and whenever i log in i get a message that ur login keyring password and user password do not match, so how do i change my login keyring password!!
View 1 Replies View RelatedI have a kickstart script that attempts to create user "joeblow" with an encrypted password. The user is created okay, but the password does not seem to "take". After installation is complete, and the system is rebooted, this is the relevant portion of /etc/passwd:
Code:
This is the relevant portion of /etc/shadow:
Code:
Where there are two exclamation points, I would expect the encrypted password (as is the case for the root user, which is also created in the kickstart file).
The relevant line in my kickstart file looks like this:
Code:
That password string, which is 34 characters, is the word "password", encrypted with this command:
Code:
Also in my kickstart file is this line:
Code:
After the install is complete, I reboot and attempt to log in as "joeblow", but no dice. If I log in as root, and manually put the above encrypted password into /etc/shadow for jowblow, I can then log in as joeblow.
I am using fedora 12.I have two internal drives. Both are ntfs. Whenever i click on them it prompts to enter root password. But i want to mount them as normal user without entering any root password. How can i disable it so that i am not asked to enter root password everytime i mount the drives.
View 2 Replies View RelatedIs it possible to have a password protected ftp directory along with anonomus user access
i mean 2 say
when people visit my ftp link ie
ftp//server name
then can see all the directories like
text
stickers
word files
personal
They can acess all the directories and can see contents but when they go to my personal directory they should be prompted for a password.
