System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

FREE PERL SCRIPT: Non-Interactive bulk root password change on HP-UX servers

VK2COT
Honored Contributor

FREE PERL SCRIPT: Non-Interactive bulk root password change on HP-UX servers

Hello,

I wrote a Perl script to facilitate root
password change across may HP-UX servers.

The goal was:

a) Use SSH key exchnage, or

b) Use SSH password authentication for
remote servers,

c) Read a file with entries of the following
type:

remserv:newpasswd:remcurrpass
remserv2:
remserv3:newpass3

The first example is for a remote server
"remserv" that currently uses password
"remcurpass", so plain SSH password
authentication is used to change it to new
password "newpasswd".

The second example is for a remote server
"remserv2" that uses SSH key exchange and the
Perl script will pick up a new password at
random (from a list of valid characters).

The third example is for a remote server
"remserv3" that uses S"newpass3".

The list of valid characters in the Perl script is defined via variables:

# Default characters for passwords
#
my $lowercase = q{abcdefghijklmnopqrstuvwxyz};
my $UPPERCASE = q{ABCDEFGHIJKLMNOPQRSTUVWXYZ};
my $Digits = q{0123456789};
my $Punctuation = q{~!$%^&*()-=_[]|:,.} . '{}';
my $Matchlist = "${UPPERCASE}${lowercase}${Digits}${Punctuation}";

The latest version of the script is always
on my home web server (see other posts
for references).

I hope somebody find it useful :)

Cheers

VK2COT
VK2COT - Dusan Baljevic
7 REPLIES
Prasanth V Aravind
Trusted Contributor

Re: FREE PERL SCRIPT: Non-Interactive bulk root password change on HP-UX servers


Hi VK2COT ...


But where is the script ??? From where i can donwnload it ??


Prasanth.
Horia Chirculescu
Honored Contributor

Re: FREE PERL SCRIPT: Non-Interactive bulk root password change on HP-UX servers

VK2COT
Honored Contributor

Re: FREE PERL SCRIPT: Non-Interactive bulk root password change on HP-UX servers

Huh,

I included it in the post but it disappeared.

let's try again.

VK2COT
VK2COT - Dusan Baljevic
Prasanth V Aravind
Trusted Contributor

Re: FREE PERL SCRIPT: Non-Interactive bulk root password change on HP-UX servers


Thanks :)

I got it ...
Stephan._1
Trusted Contributor

Re: FREE PERL SCRIPT: Non-Interactive bulk root password change on HP-UX servers

In my opinion it is more then worth to point to the main site:

http://www.circlingcycle.com.au/Unix-sources/Unix-scripts.html

Some really impressive scripts there, thanks for the contribution!

Best,

Stephan
Share what you know, learn what you don't.
Hakki Aydin Ucar
Honored Contributor

Re: FREE PERL SCRIPT: Non-Interactive bulk root password change on HP-UX servers

Hi,
is your script able to check password power by character lengths OR old password check to not use again for extra security ?

and when it comes to cross platform supporting; since, one of remote server is Linux I wonder if is it able to work on Linux Red Hat ?

By the way , this script is usefull because I have 8 servers as remote and this is easier way to change password.

Thanks.
VK2COT
Honored Contributor

Re: FREE PERL SCRIPT: Non-Interactive bulk root password change on HP-UX servers

Hello,

The password history was not really part of my
original goals. The reason is simple:

a) One either needs to run Trusted System
(TCB), and TCB is obsolete as of HP-UX 11.31;

or

b) Install StdModSecExt on HP-UX 11.23
servers;

or

c) Install SecurityMon on HP-UX 11.31
servers.

In addition. As far as long passwords are
concerned, either TCB for any current
HP-UX release must be used, or
LongPassword11i3 for HP-UX 11.31.

Those issues are part of IT security
policies :)

Over time, I might add support for some other
options and interesting features. At the moment, I am happy that it works
well as it is :)

Keep an eye on my home Web server and
you might see new scripts and updates soon.

At the moment I am working on Perl script to
update disk labels for Solaris (I do not
deal with HP-UX only :)).

Cheers,

VK2COT
VK2COT - Dusan Baljevic