1748084 Members
5491 Online
108758 Solutions
New Discussion юеВ

passwd history

 
SOLVED
Go to solution
Peter Gillis
Super Advisor

passwd history

Hello,
ux11i v1.
Is there a way to tell when when users passwords were last changed on an untrusted system? Easy points ....
Thanks
Maria
6 REPLIES 6
Sridhar Bhaskarla
Honored Contributor

Re: passwd history

Hi Maria,

Not a good news.

It's not possible to find when the user changed the password without a bit of scripting. Even with scripting cannot tell you exactly when the user changed the password. You can probably enable debugging with PAM (by adding 'debug' at the end of passwd line in pam.conf) but that can only log an entry in syslog.log but do not keep the history anywhere.

For trusted system, the password data is kept under /tcb structure under seperate files for each user.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
Michael Tully
Honored Contributor

Re: passwd history

Hi Maria,

on an untrusted system, no easy way. Obviously trusting a system is the answer; but implementing a force change will give you some indication by utilising the information in the password file itself in untrusted mode. Have a look at the 'man 4 passwd' man page. Some scripting skills will assist.

Regards
Michael
Anyone for a Mutiny ?
Steven E. Protter
Exalted Contributor

Re: passwd history

passwd -sa can provide some information. You will need to either read it or run a script against it to inform your users.

Thats how i find inactive users. Look at the output and you'll see the fields.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Steven E. Protter
Exalted Contributor

Re: passwd history

password history can be stored.

In /etc/default you can have a file called security

/etc/default/security

In that file you can define how many times a password can be changed before re-used and such.

In order to calculate that stuff, the data must be stores somewhere.

I'm unable to recall whether thats a trusted system feature or not. Here is a thread.

http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=593092

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Sunil Sharma_1
Honored Contributor
Solution

Re: passwd history

Hi,
logins -x will give you desired output. here is few lan form "man logins"

-x Display extended information about selected users. This extende
information includes home directory, login shell and password
aging data, each on its own line. Password information consists
of password status (PS for valid password, LK for locked and NP
for no password) and, if a password is present, date of last
change, required number of days between changes, and number of
days allowed between changes. In the case of non-trusted
systems, the date of last change will be the latest Thursday
since the change.

Sunil
*** Dream as if you'll live forever. Live as if you'll die today ***
Peter Gillis
Super Advisor

Re: passwd history

Thankyou everyone. Sunil's response of login -x, reading the manpage has helped me out.

Maria