- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: Which files on Hpux NonTrusted are updated whe...
Operating System - HP-UX
1752676
Members
5574
Online
108789
Solutions
Forums
Categories
Company
Local Language
юдл
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
юдл
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-30-2010 04:29 AM
тАО03-30-2010 04:29 AM
I'm not able to find the files which are affected when I execute the passwd -x command on my NonTrusted Hpux machine.
OS version: B.11.11 U 9000/800 2865163845 unlimited-user license
Note: I do not have following files in the hpux machine.
/etc/shadow
/.secure/etc/passwd
/tcb/files/auth
/etc/default/security
Any help/pointer in this regard is highly appreciated.
Thank you
OS version: B.11.11 U 9000/800 2865163845 unlimited-user license
Note: I do not have following files in the hpux machine.
/etc/shadow
/.secure/etc/passwd
/tcb/files/auth
/etc/default/security
Any help/pointer in this regard is highly appreciated.
Thank you
Solved! Go to Solution.
6 REPLIES 6
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-30-2010 07:15 AM
тАО03-30-2010 07:15 AM
Re: Which files on Hpux NonTrusted are updated when fired passwd -x command for an user
If you are using the default password scheme, only /etc/passwd gets changed.
(Assuming you aren't using NIS.)
(Assuming you aren't using NIS.)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-30-2010 08:17 AM
тАО03-30-2010 08:17 AM
Re: Which files on Hpux NonTrusted are updated when fired passwd -x command for an user
If you use shadow password then file /etc/shadow is changed when you run passwd -x.
See: http://docs.hp.com/en/B2355-90950/ch08s15.html
See: http://docs.hp.com/en/B2355-90950/ch08s15.html
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-30-2010 11:13 AM
тАО03-30-2010 11:13 AM
Re: Which files on Hpux NonTrusted are updated when fired passwd -x command for an user
Shalom,
If you are getting a message like this, your system may be trusted, or possibly have a problem.
/tcb/files/auth is part of trusted syste4m infrastructure.
/etc/shadow is implemented when you install the shadow password depot available at http://software.hp.com
/etc/default/security is as the name implies the keeper of security defaults. That file needs to be on the system no matter the circumstances.
So I have to ask, what has happened to this system? It is highly inadvisable to run shadow passwords and trusted system at the same time. Each has its own authentication/storage scheme.
SEP
If you are getting a message like this, your system may be trusted, or possibly have a problem.
/tcb/files/auth is part of trusted syste4m infrastructure.
/etc/shadow is implemented when you install the shadow password depot available at http://software.hp.com
/etc/default/security is as the name implies the keeper of security defaults. That file needs to be on the system no matter the circumstances.
So I have to ask, what has happened to this system? It is highly inadvisable to run shadow passwords and trusted system at the same time. Each has its own authentication/storage scheme.
SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-30-2010 07:25 PM
тАО03-30-2010 07:25 PM
Re: Which files on Hpux NonTrusted are updated when fired passwd -x command for an user
Its not a NIS nor a trusted Hpux box.
Output of the passwd commands:
passwd -x 3 -n 9 test1
argument rounded up to nearest week
argument rounded up to nearest week
passwd -s test1
test1 PS 12/11/08 14 7
From passwd file
cat /etc/passwd | grep test1
test1:KciRFSYBXgr62,/0kT:107:20::/home/test1:/sbin/sh
Is the password last changed date, min and max values are encoded in the passwd file for an user?
Some of the forum threads related to the same question says /0kT in passwd file is to be decoded.
Output of the passwd commands:
passwd -x 3 -n 9 test1
passwd -s test1
test1 PS 12/11/08 14 7
From passwd file
cat /etc/passwd | grep test1
test1:KciRFSYBXgr62,/0kT:107:20::/home/test1:/sbin/sh
Is the password last changed date, min and max values are encoded in the passwd file for an user?
Some of the forum threads related to the same question says /0kT in passwd file is to be decoded.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-30-2010 09:50 PM
тАО03-30-2010 09:50 PM
Solution
>passwd -x 3 -n 9 test1
Any reason you want the max (-x) smaller than the min (-n)? This means the user can't change the password.
>test1:KciRFSYBXgr62,/0kT:107:20::/home/test1:/sbin/sh
>Is the password last changed date, min and max values are encoded in the passwd file for an user?
Exactly:
$ passwd_expires /0kT
Only superuser can change the password
Max weeks to expire: 1
Min weeks to reset: 2
Weeks since 1970: 2032
Password was reset on: Wed Dec 10 16:00:00 2008
Password expires on: Wed Dec 17 16:00:00 2008
I'm not sure if the other fields are valid after the "Only superuser can change the password". passwd(4) isn't clear.
Any reason you want the max (-x) smaller than the min (-n)? This means the user can't change the password.
>test1:KciRFSYBXgr62,/0kT:107:20::/home/test1:/sbin/sh
>Is the password last changed date, min and max values are encoded in the passwd file for an user?
Exactly:
$ passwd_expires /0kT
Only superuser can change the password
Max weeks to expire: 1
Min weeks to reset: 2
Weeks since 1970: 2032
Password was reset on: Wed Dec 10 16:00:00 2008
Password expires on: Wed Dec 17 16:00:00 2008
I'm not sure if the other fields are valid after the "Only superuser can change the password". passwd(4) isn't clear.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-01-2010 12:23 AM
тАО04-01-2010 12:23 AM
Re: Which files on Hpux NonTrusted are updated when fired passwd -x command for an user
there is no significant reason for min is greater than max. Just provided an example. with different figures for min and max.
I've got the required answer from you guys.
Really appreciate your help.
I've got the required answer from you guys.
Really appreciate your help.
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
News and Events
Support
© Copyright 2024 Hewlett Packard Enterprise Development LP