Security :: REDHAT Missing Functionality - Force User To Change Password On Login?
Mar 16, 2011
I have now been trying to find an answer for the following for a while and can't seem to get anything.On previous linux distros we had the option available "passwd -e" which allowed us to force the user to change their passwords upon the next login.s functionality however seems to be excluded from latest linux distros (currently using RHEL 5.4)...Does anybody know how the same effect can be achieved and perhaps any idea on why this option was removed as it was great for securing passwords
View 5 Replies
ADVERTISEMENT
Feb 2, 2010
I want to add 50 new users, not on the server yet I want to add them all to group Accounting - with 1 option, not user by user I want to setup a default password for them all, and have it say something like 'You must now change password or no access will be permitted' Any other options I also want to do once, not for each user?
View 3 Replies
View Related
Jun 14, 2011
everytime i try to vnc to my box, it pops up the keyring authentication, which is obviously a huge problem when logging in remotely.how do i change my keyring password to match my login password?
View 4 Replies
View Related
Dec 14, 2010
I'm seeing really bad user login format under a standard installation and am wondering why ubuntu does this as default. I have noticed that the graphical login for gnome sizes itself to accommodate a user's exact password length. This indicates to me that somewhere on the unencrypted part of a standard installation with user encryption contains at least some indication of the content of the password length which seems a security flaw even if not a complete hole, it majorly reduces the number of attempts a cracker would have to cycle through.
And that's assuming that *only* the length is contained. Furthermore it seems that it would be MUCH better to simply display the number of characters entered into the pw field and allowing the gui to expand itself from an fixed size as the field is filled out so the the user still receives visual feedback for entering characters. Either a simple character count display should be entered into the field or a 10 dot to new line so that one can visually quickly count the number enter by multiplying from a 10base graphical observation.
View 9 Replies
View Related
Jun 1, 2010
I want to do setting in RHEL5 such that user should able to change his password only once in a day.I have changed the fourth field (i.e. minimum number of days to change) in in "/etc/shadow" file for "root" to "1". But its not working. I am able to change the password of "root" using "passwd" command.Any one can help me out on this issue
View 5 Replies
View Related
Apr 4, 2011
Second off, I'm trying to capture a user password on login (through gdm) such that I can re-use it for a service like Kerberos or AFS. The idea is that the user has to log in only once, and then I renew the tickets and tokens until they log out again. If there's a better way to do this
View 4 Replies
View Related
Dec 22, 2010
One of my users has a bit of a problem. I forced password change for this user, and the user thought that it was simply asking for the password again. I had to use my godlike powers to change the users password again. And here comes trouble.The user cannot log in. The system accept the password and we can see the background screen and some messages, but that is all.Quote:Could not update ICEauthoroty file /home/user/.ICEauthorotyQuote:
There are problems with configurationsserver.(/usr/lib/libgconf2-4/gconf-sanity-check-2 exit with status 256)Quote:Nautilus couldn't create following folders necessary: /home/user/Desktop, /home/user/.nautilus.Please create these folders before you run Nautilus, or set permission so Nautilus can create them
View 4 Replies
View Related
Apr 13, 2011
I have a problem with my fedora workstation.I am trying to change my ldap user password through passwd command.When I first create the user on ldap server, I use md5 and create the user password.This is the entry:
Code:
dn: uid=boo,ou=People,dc=linux,dc=gettolandia,dc=org
uid: boo
[code]....
View 3 Replies
View Related
Aug 26, 2010
I have a problem with my ubuntu account. I am running 4 virtual machines, based on jeos-8.04 and I am using a public key authentication to login to my account (via ssh). This is not the problem, I have the key and the passphrase. But when I am logged in, I can't sudo, because I forgot the password for the accout.
View 6 Replies
View Related
May 5, 2010
My goal is this: Allow a user to connect to a server via SSH with any login name or password without checking to see if that account exists on that server. Their account would be captured by a universal account say, 'generic_user', and then they would be directed to one of my python scripts with the username and password they supplied for initial login. At this point my script would capture their SSHD process ID and allow/deny their existence based upon a MySQL/Subscription check.
The part I'm having trouble with is with PAM and allowing the user to login with any credentials and be successfully authenticated under the generic account. Beyond that, everything is great.
View 2 Replies
View Related
Mar 30, 2010
is it considered standard practice to change the user password on a regular basis and if so how often?
View 4 Replies
View Related
Apr 14, 2010
Is there a way to change password to value same as the previous password? I know this is a security flaw, but would like to know however. when I try this:
[Code].....
View 2 Replies
View Related
Mar 1, 2011
I have got a RHEL 5.6 server configured to authenticate via a Windows 2008 domain controller via LDAPS.Everything is working fine, except from the following: When I create a new user in Active directory and check the option "user must change password at next logon", the new user cannot logon and gets an "access denied" message. In /var/log/secure, I find the following:
Mar 1 14:43:21 cpssvn10 sshd[5363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.168.3.12 user=testuser2
Mar 1 14:43:21 cpssvn10 sshd[5363]: pam_ldap: error trying to bind as user "CN=CPSS Testuser 2,OU=IBM,DC=cpss,DC=smarterplatform,DC=com" (Invalid credentials)
Mar 1 14:43:23 cpssvn10 sshd[5363]: Failed password for testuser2 from 192.168.3.12 port 4583 ssh2
As soon as I uncheck the "user must change ..." option, the user can log on without problems. Also password change via the passwd command works.
View 2 Replies
View Related
Apr 5, 2010
I would like to restrict a few selected accounts to minimum of 15 characters passwords. Other accounts,however, should still be able to login with 8 character passwords. This is in RHEL 5. Does anyone know how to go about it? I have checked PAM documentation and pam_cracklib.so has an option minlen. As per its documentation, minlen can force users to use 15 characters, but it forces every account on the system. I might be wrong too.
View 5 Replies
View Related
Aug 22, 2011
how to use remote services to login to a remote machine without providing the password?
Are there any commands in Linux or do I have to write a 'C' code for it ?
View 2 Replies
View Related
Oct 2, 2010
I want to force the user to login from the Terminal before the can see the desktop
View 9 Replies
View Related
Sep 18, 2010
I am new to ldap. I've installed openldap server in a centos but yet to test it. My question is how to force user to login to the system using ldap instead of non-ldap login? For example, I created some users in the ldap server, these users are exist in /etc/passwd, when ssh login to server as user, it normally authenticates through /etc/passwd file without being forced to use ldap.
View 3 Replies
View Related
Aug 4, 2009
I'm using a program on a group of servers which contact each other using SSH. I've got the authentication keys setup with no password but when one box tries to connect to another it wants the password for the user it's trying to communicate with. So the main problem is there is a lot of communicating within this program so it's important to allow each box communicate with each other without the use of a password. I'm using OpenSSH 4.3 with OpenSSL 0.9.8 on Red Hat Enterprise Linux Server 5.3 (Tikanga). I'm also using SSH on Ubuntu(Intrepid) to connect to these servers at the mo as i don't have direct access to the boxes.
View 4 Replies
View Related
May 4, 2011
i changed my password and whenever i log in i get a message that ur login keyring password and user password do not match, so how do i change my login keyring password!!
View 1 Replies
View Related
Mar 15, 2011
Im am working on a system which runs on RedHat Enterprise I have been asked by superiors to see if the following is possible. (sudoers file config change i guess)
Example
User1 has root access
user2 has root access, but must not be able to access ctmag (user account)
I know the obvious here is that if user2 can switch to root then it won't work. But i just need to prevent user2 from su - ctmag. A password is set on the account ctmag, but as user2 has root access it switches without a password prompt
Is there anyway i can prevent user2 from switching to ctmag but still have access to root?
View 6 Replies
View Related
May 7, 2010
I have a server x86 architecture and my problem is lost my username & password. Hope anyone can help about this matter as i need to log in to the server for maintenance purpose.
View 1 Replies
View Related
Nov 22, 2010
I work on a product that have to start automatically an application. Running Opensuse 11.2 So in the inittab I have : 1:2345:once:/root/Velox/VeloxBoot.sh 2:2345:respawn:/sbin/mingetty tty2
In the VeloxBoot.sh, if I don't press any key, my application starts after a timeout. If the user presses a key I want to have a login prompt. Unfortunately, if I start /bin/login, I have a prompt with login, but once I enter my login, it does not ask for a password and it says wrong password
View 2 Replies
View Related
Jul 25, 2011
I have a brand new install.I was doing some housekeeping and made a more sure password.Something went wonky and I got locked out.So I booted to root and changed the password.I'm back in the box now.But, my keyring password no longer matches my user password.So every time I want to do something I am asked for my old password.How do I change my keyring password to match my login password?
View 3 Replies
View Related
Jan 15, 2010
I am using mint 8 for a 2 weeks, I am noob to linux but I like Mint than any other linux distro which is great alternative to windows. I have a problem regarding password reseting.
1. My laptop automatically get logged in without asking user name and password.
2. I tried to change password for newly created user and root user using graphical way but it does not work.
2. I can perform administrator task using only OEM user which is default inbuilt user of mint.
How can make my laptop to ask password when mint get booted? How to change password for other users?
View 1 Replies
View Related
Jan 6, 2009
At the RHEL prompt, I entered the standard user's username/password combo. Linux displays a message box stating:"Your account has expired; please contact your system administrator."Next, I entered "root" in the username field and entered the root password (which expired also--keep in mind that passwords are set to expire after x days). Linux displays a message box stating:"You are required to change your password immediately (password aged)."When prompted to "Enter current UNIX password", I entered the new password (was that the right thing to do?); Linux displays a message box stating:"The change of the authentication token failed. Please try again later or contact the system administrator."I rebooted the system and got into command line mode; somehow I logged in as "root" (don't know exactly how, but needed to change the password there). At the "#" prompt, I type "passwd root"; Linux displays the message "Changing password for user root", followed by the message "passwd: Authentication information cannot be recovered.
View 4 Replies
View Related
Jan 13, 2010
How can I force passwd to use a simple password?I want to change my passwd & delete passwd history (if stored).I plan on creating a Virtual Appliance that uses another password besides my testing password.
View 5 Replies
View Related
May 3, 2010
Does somebody know how to disable (in RedHat) terminal auto correction functionality
View 3 Replies
View Related
Oct 5, 2010
How do I disable and change the user password using SSH on a Linux
View 3 Replies
View Related
Jan 19, 2011
I installed linux system into a USB stick, but it never asks me to enter login password (i am the default user "root") when booting. I checked the settings in "User and Group" panel, and found everything there is OK. What additional settings should I make to this problem?
View 4 Replies
View Related
Feb 11, 2010
My desktop won't come up automatically now on a hard disk of mine (see below for the Ubuntu version history). It does boot up with Grub etc; then the Ubuntu load up bar thing with the timer spinning around [I hope you can understand this technical language!] goes through ok but then instead of getting the user interface with the little boxes to enter my login and password, the whole screen is in black (as if it's in Terminal mode). This black screen then asks me for my login and password: when I entered them, it said:
Starting up......loading, please wait
19 + 0 records in
19 + 0 records out
kinit: [followed by a load of technical stuff and a series of numbers]
kinit: trying to resume from /dev/disk/ by-uuid/9b [then a whole series of numbers]
kinit: no resume image, doing normal boot.
[Code]...
View 2 Replies
View Related
