- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - Linux
- >
- Re: password expiry on linux box
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-29-2010 09:22 AM
тАО06-29-2010 09:22 AM
password expiry on linux box
In my linux box, there is a normal user (let say xyz). This user password is subject to password controls (expires after configured number of days).
We used to scp login in this box as xyz user (a script which is hardcoded xyz user and its password) and collect few data from remote end.
Problem: Let say passowrd has been expired and obivously login as xyz user would failed after that and we couldn't fetch the data from this box remotly.
Question: What are the appropriate mechanism to acheive the data without affecting password exipry limitation?
Thanking you!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-29-2010 11:50 AM
тАО06-29-2010 11:50 AM
Re: password expiry on linux box
If the password expires, the scp transfer will stop. No way around that other than to insure the password does not expire.
The passwd command on Linux lets you set the expiration time as long as you want. If this user is not one that normally logs on the system, you can safely extend the expiration.
Be prepared to explain this to any security auditors that happen to notice it.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-29-2010 03:28 PM
тАО06-29-2010 03:28 PM
Re: password expiry on linux box
For the latter, cron jobs would also fail if the account password "expires". So, I generally set password expiration to Never, but also disable interactive password login. Then, sudo is configured for local "sudo -u USERID COMMAND" access only.
If you're using SSH (and it sounds like you are with scp), you could setup a passwordless public/private key relationship between the source and target hosts that would not be affected by password expiration.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-01-2010 03:58 AM
тАО07-01-2010 03:58 AM
Re: password expiry on linux box
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-18-2010 08:06 PM
тАО07-18-2010 08:06 PM
Re: password expiry on linux box
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-29-2010 01:53 AM
тАО08-29-2010 01:53 AM
Re: password expiry on linux box
Disbaled password expiry for normal user in the box at the time of start-up level.
chage -M -1
BR,
MKS
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-30-2010 11:11 AM
тАО08-30-2010 11:11 AM
Re: password expiry on linux box
you only need to execute the chage command once. ( no need to include in a boot script )
in an effort to maintain some additional security why not set up ssh keys, restrict this account to sftp only and use a batch file that does not include a visable password.