2007-10-07 17:16:16 +05:30
|
|
|
<?xml version="1.0" encoding="UTF-8"?>
|
2008-10-11 17:14:43 +05:30
|
|
|
<!--
|
|
|
|
Copyright (c) 1991 , Julianne Frances Haugh
|
2011-11-07 00:08:10 +05:30
|
|
|
Copyright (c) 2007 - 2011, Nicolas François
|
2008-10-11 17:14:43 +05:30
|
|
|
All rights reserved.
|
|
|
|
|
|
|
|
Redistribution and use in source and binary forms, with or without
|
|
|
|
modification, are permitted provided that the following conditions
|
|
|
|
are met:
|
|
|
|
1. Redistributions of source code must retain the above copyright
|
|
|
|
notice, this list of conditions and the following disclaimer.
|
|
|
|
2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
notice, this list of conditions and the following disclaimer in the
|
|
|
|
documentation and/or other materials provided with the distribution.
|
|
|
|
3. The name of the copyright holders or contributors may not be used to
|
|
|
|
endorse or promote products derived from this software without
|
|
|
|
specific prior written permission.
|
|
|
|
|
|
|
|
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
|
|
|
``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
|
|
|
LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
|
|
|
|
PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
|
|
|
HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
|
|
SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
|
|
|
LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
|
|
|
DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
|
|
|
THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
|
|
(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
|
|
|
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
-->
|
* man/chfn.1.xml: Uses CHFN_AUTH, CHFN_RESTRICT, LOGIN_STRING.
* man/chgpasswd.8.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS (SHA_CRYPT_MAX_ROUNDS).
* man/chpasswd.8.xml: Switch to using entities for ENCRYPT_METHOD,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS (SHA_CRYPT_MAX_ROUNDS).
* man/chsh.1.xml: Uses CHSH_AUTH, LOGIN_STRING.
* man/expiry.1.xml: Does not use any login.defs parameter.
* man/gpasswd.1.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS.
* man/login.defs.5.xml: Added CHSH_AUTH.
* man/login.defs.5.xml: Cross reference -> cross references.
* man/login.defs.5.xml: chfn only uses CHFN_AUTH when no_pam.
* man/login.defs.5.xml: chsh uses CHSH_AUTH, not CHFN_AUTH.
* man/login.defs.d/CHSH_AUTH.xml: Added.
* man/login.defs.5.xml: chsh uses parameters only when no_pam.
* man/login.defs.5.xml: expiry does not use CONSOLE_GROUPS, even
if linked in the binary.
* man/newusers.8.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, PASS_MAX_DAYS, PASS_MIN_DAYS, PASS_WARN_AGE,
SHA_CRYPT_MIN_ROUNDS, UMASK.
2007-11-27 04:57:56 +05:30
|
|
|
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook V4.5//EN"
|
|
|
|
"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
|
|
|
|
<!ENTITY ENCRYPT_METHOD SYSTEM "login.defs.d/ENCRYPT_METHOD.xml">
|
|
|
|
<!ENTITY MD5_CRYPT_ENAB SYSTEM "login.defs.d/MD5_CRYPT_ENAB.xml">
|
|
|
|
<!ENTITY SHA_CRYPT_MIN_ROUNDS SYSTEM "login.defs.d/SHA_CRYPT_MIN_ROUNDS.xml">
|
2011-07-09 01:19:09 +05:30
|
|
|
<!-- SHADOW-CONFIG-HERE -->
|
* man/chfn.1.xml: Uses CHFN_AUTH, CHFN_RESTRICT, LOGIN_STRING.
* man/chgpasswd.8.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS (SHA_CRYPT_MAX_ROUNDS).
* man/chpasswd.8.xml: Switch to using entities for ENCRYPT_METHOD,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS (SHA_CRYPT_MAX_ROUNDS).
* man/chsh.1.xml: Uses CHSH_AUTH, LOGIN_STRING.
* man/expiry.1.xml: Does not use any login.defs parameter.
* man/gpasswd.1.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS.
* man/login.defs.5.xml: Added CHSH_AUTH.
* man/login.defs.5.xml: Cross reference -> cross references.
* man/login.defs.5.xml: chfn only uses CHFN_AUTH when no_pam.
* man/login.defs.5.xml: chsh uses CHSH_AUTH, not CHFN_AUTH.
* man/login.defs.d/CHSH_AUTH.xml: Added.
* man/login.defs.5.xml: chsh uses parameters only when no_pam.
* man/login.defs.5.xml: expiry does not use CONSOLE_GROUPS, even
if linked in the binary.
* man/newusers.8.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, PASS_MAX_DAYS, PASS_MIN_DAYS, PASS_WARN_AGE,
SHA_CRYPT_MIN_ROUNDS, UMASK.
2007-11-27 04:57:56 +05:30
|
|
|
]>
|
|
|
|
|
2007-10-07 17:16:16 +05:30
|
|
|
<refentry id='chpasswd.8'>
|
2007-11-11 05:16:11 +05:30
|
|
|
<!-- $Id$ -->
|
2012-05-25 17:15:21 +05:30
|
|
|
<refentryinfo>
|
|
|
|
<author>
|
|
|
|
<firstname>Julianne Frances</firstname>
|
|
|
|
<surname>Haugh</surname>
|
|
|
|
<contrib>Creation, 1991</contrib>
|
|
|
|
</author>
|
|
|
|
<author>
|
|
|
|
<firstname>Thomas</firstname>
|
|
|
|
<surname>Kłoczko</surname>
|
|
|
|
<email>kloczek@pld.org.pl</email>
|
|
|
|
<contrib>shadow-utils maintainer, 2000 - 2007</contrib>
|
|
|
|
</author>
|
|
|
|
<author>
|
|
|
|
<firstname>Nicolas</firstname>
|
|
|
|
<surname>François</surname>
|
|
|
|
<email>nicolas.francois@centraliens.net</email>
|
|
|
|
<contrib>shadow-utils maintainer, 2007 - now</contrib>
|
|
|
|
</author>
|
|
|
|
</refentryinfo>
|
2007-10-07 17:16:16 +05:30
|
|
|
<refmeta>
|
|
|
|
<refentrytitle>chpasswd</refentrytitle>
|
|
|
|
<manvolnum>8</manvolnum>
|
2007-10-07 17:17:11 +05:30
|
|
|
<refmiscinfo class="sectdesc">System Management Commands</refmiscinfo>
|
2011-07-09 01:19:09 +05:30
|
|
|
<refmiscinfo class="source">shadow-utils</refmiscinfo>
|
|
|
|
<refmiscinfo class="version">&SHADOW_UTILS_VERSION;</refmiscinfo>
|
2007-10-07 17:16:16 +05:30
|
|
|
</refmeta>
|
|
|
|
<refnamediv id='name'>
|
|
|
|
<refname>chpasswd</refname>
|
|
|
|
<refpurpose>update passwords in batch mode</refpurpose>
|
|
|
|
</refnamediv>
|
|
|
|
|
|
|
|
<refsynopsisdiv id='synopsis'>
|
|
|
|
<cmdsynopsis>
|
|
|
|
<command>chpasswd</command>
|
|
|
|
<arg choice='opt'>
|
2007-10-07 17:17:01 +05:30
|
|
|
<replaceable>options</replaceable>
|
2007-10-07 17:16:16 +05:30
|
|
|
</arg>
|
|
|
|
</cmdsynopsis>
|
|
|
|
</refsynopsisdiv>
|
2007-10-07 17:17:01 +05:30
|
|
|
|
2007-10-07 17:16:16 +05:30
|
|
|
<refsect1 id='description'>
|
|
|
|
<title>DESCRIPTION</title>
|
2007-10-07 17:17:01 +05:30
|
|
|
<para>
|
2007-10-07 20:06:51 +05:30
|
|
|
The <command>chpasswd</command> command reads a list of user name and
|
|
|
|
password pairs from standard input and uses this information to update
|
|
|
|
a group of existing users. Each line is of the format:
|
2007-10-07 17:16:16 +05:30
|
|
|
</para>
|
|
|
|
<para>
|
|
|
|
<emphasis remap='I'>user_name</emphasis>:<emphasis
|
|
|
|
remap='I'>password</emphasis>
|
|
|
|
</para>
|
2007-10-07 17:17:01 +05:30
|
|
|
<para>
|
2010-03-26 02:05:59 +05:30
|
|
|
By default the passwords must be supplied in clear-text, and are
|
2007-11-24 05:46:41 +05:30
|
|
|
encrypted by <command>chpasswd</command>.
|
|
|
|
Also the password age will be updated, if present.
|
2007-10-07 17:16:16 +05:30
|
|
|
</para>
|
2010-03-26 02:05:59 +05:30
|
|
|
<para condition="no_pam">
|
2007-11-20 18:29:20 +05:30
|
|
|
The default encryption algorithm can be defined for the system with
|
2010-03-26 02:05:59 +05:30
|
|
|
the <option>ENCRYPT_METHOD</option> or
|
|
|
|
<option>MD5_CRYPT_ENAB</option> variables of
|
|
|
|
<filename>/etc/login.defs</filename>, and can be overwitten with the
|
|
|
|
<option>-e</option>, <option>-m</option>, or <option>-c</option>
|
|
|
|
options.
|
|
|
|
</para>
|
|
|
|
<para condition="pam">
|
|
|
|
By default, passwords are encrypted by PAM, but (even if not
|
|
|
|
recommended) you can select a different encryption method with the
|
|
|
|
<option>-e</option>, <option>-m</option>, or <option>-c</option>
|
|
|
|
options.
|
|
|
|
</para>
|
|
|
|
<para>
|
|
|
|
<phrase condition="pam">Except when PAM is used to encrypt the
|
|
|
|
passwords,</phrase> <command>chpasswd</command> first updates all the
|
|
|
|
passwords in memory, and then commits all the changes to disk if no
|
|
|
|
errors occured for any user.
|
|
|
|
</para>
|
|
|
|
<para condition="pam">
|
|
|
|
When PAM is used to encrypt the passwords (and update the passwords in
|
|
|
|
the system database) then if a password cannot be updated
|
|
|
|
<command>chpasswd</command> continues updating the passwords of the
|
|
|
|
next users, and will return an error code on exit.
|
2007-11-20 18:29:20 +05:30
|
|
|
</para>
|
2007-10-07 17:17:01 +05:30
|
|
|
<para>
|
|
|
|
This command is intended to be used in a large system environment
|
2007-10-07 17:16:16 +05:30
|
|
|
where many accounts are created at a single time.
|
|
|
|
</para>
|
|
|
|
</refsect1>
|
2007-10-07 17:17:01 +05:30
|
|
|
|
2007-10-07 17:16:16 +05:30
|
|
|
<refsect1 id='options'>
|
|
|
|
<title>OPTIONS</title>
|
|
|
|
<para>
|
|
|
|
The options which apply to the <command>chpasswd</command> command
|
|
|
|
are:
|
|
|
|
</para>
|
2010-03-26 02:05:59 +05:30
|
|
|
<variablelist remap='IP'>
|
2007-11-20 18:29:20 +05:30
|
|
|
<varlistentry>
|
2010-03-26 02:05:59 +05:30
|
|
|
<term>
|
|
|
|
<option>-c</option>, <option>--crypt-method</option>
|
|
|
|
<replaceable>METHOD</replaceable>
|
|
|
|
</term>
|
2007-11-20 18:29:20 +05:30
|
|
|
<listitem>
|
|
|
|
<para>Use the specified method to encrypt the passwords.</para>
|
2009-03-14 16:39:57 +05:30
|
|
|
<para condition="no_sha_crypt">
|
|
|
|
The available methods are DES, MD5, and NONE.
|
|
|
|
</para>
|
|
|
|
<para condition="sha_crypt">
|
* man/pwconv.8.xml: Fix typos.
* man/chpasswd.8.xml, man/chgpasswd.8.xml: Document the NONE crypt
method.
* man/login.defs.d/MAIL_DIR.xml: Add comment regarding useradd not
using MAIL_FILE.
* man/login.defs.d/ERASECHAR.xml, man/login.defs.d/KILLCHAR.xml,
man/login.defs.d/CONSOLE_GROUPS.xml, man/login.defs.d/ENV_HZ.xml,
man/login.defs.d/ENV_PATH.xml, man/login.defs.d/ENV_SUPATH.xml:
These variables are also used by some tools when compiled with PAM
support.
* man/login.defs.d/ENV_HZ.xml: Add note that it is only used by
sulogin when compiled with PAM support.
* man/login.defs.d/ENV_SUPATH.xml: Typos: ENV_PATH -> ENV_SUPATH,
and mention sbin in the path.
* man/login.defs.d/LOGIN_STRING.xml: Fix typo: confition ->
condition.
* man/sg.1.xml: Add CONFIGURATION section (SYSLOG_SG_ENAB).
* man/su.1.xml: ENV_HZ, LOGIN_STRING, MAIL_DIR, USERGROUPS_ENAB
are only used when su is compiled without PAM support.
* man/login.defs.5.xml: Added variables: OBSCURE_CHECKS_ENAB
PASS_ALWAYS_WARN PASS_CHANGE_TRIES SULOG_FILE SU_NAME
SU_WHEEL_ONLY SYSLOG_SG_ENAB SYSLOG_SU_ENAB.
* man/login.defs.5.xml: ENVIRON_FILE is only used when compiled
without PAM support.
* man/login.defs.5.xml: sulogin uses variables even when compiled
with PAM support.
* man/login.1.xml: ENV_HZ ENV_PATH ENV_SUPATH MAIL_DIR UMASK are
only used when login is not compiled with PAM support.
2007-12-09 20:20:14 +05:30
|
|
|
The available methods are DES, MD5, NONE, and SHA256 or SHA512
|
|
|
|
if your libc support these methods.
|
2007-11-20 18:29:20 +05:30
|
|
|
</para>
|
2010-03-26 02:05:59 +05:30
|
|
|
<para condition="pam">
|
|
|
|
By default, PAM is used to encrypt the passwords.
|
|
|
|
</para>
|
|
|
|
<para condition="no_pam">
|
|
|
|
By default (if none of the <option>-c</option>,
|
|
|
|
<option>-m</option>, or <option>-e</option> options are
|
|
|
|
specified), the encryption method is defined by the
|
|
|
|
<option>ENCRYPT_METHOD</option> or
|
|
|
|
<option>MD5_CRYPT_ENAB</option> variables of
|
|
|
|
<filename>/etc/login.defs</filename>.
|
|
|
|
</para>
|
2007-11-20 18:29:20 +05:30
|
|
|
</listitem>
|
|
|
|
</varlistentry>
|
2007-10-07 17:16:16 +05:30
|
|
|
<varlistentry>
|
2007-10-07 17:17:01 +05:30
|
|
|
<term><option>-e</option>, <option>--encrypted</option></term>
|
|
|
|
<listitem>
|
|
|
|
<para>Supplied passwords are in encrypted form.</para>
|
|
|
|
</listitem>
|
2007-10-07 17:16:16 +05:30
|
|
|
</varlistentry>
|
2009-05-09 18:46:03 +05:30
|
|
|
</variablelist>
|
|
|
|
<variablelist remap='IP'>
|
|
|
|
<varlistentry>
|
|
|
|
<term><option>-h</option>, <option>--help</option></term>
|
|
|
|
<listitem>
|
|
|
|
<para>Display help message and exit.</para>
|
|
|
|
</listitem>
|
|
|
|
</varlistentry>
|
|
|
|
</variablelist>
|
2010-03-26 02:05:59 +05:30
|
|
|
<variablelist remap='IP'>
|
2007-10-07 17:16:16 +05:30
|
|
|
<varlistentry>
|
2007-10-07 17:17:01 +05:30
|
|
|
<term><option>-m</option>, <option>--md5</option></term>
|
|
|
|
<listitem>
|
|
|
|
<para>
|
2007-10-07 17:17:57 +05:30
|
|
|
Use MD5 encryption instead of DES when the supplied passwords are
|
2007-10-07 17:17:01 +05:30
|
|
|
not encrypted.
|
|
|
|
</para>
|
|
|
|
</listitem>
|
2007-10-07 17:16:16 +05:30
|
|
|
</varlistentry>
|
2011-11-07 00:08:10 +05:30
|
|
|
<varlistentry>
|
|
|
|
<term>
|
|
|
|
<option>-R</option>, <option>--root</option>
|
|
|
|
<replaceable>CHROOT_DIR</replaceable>
|
|
|
|
</term>
|
|
|
|
<listitem>
|
|
|
|
<para>
|
|
|
|
Apply changes in the <replaceable>CHROOT_DIR</replaceable>
|
|
|
|
directory and use the configuration files from the
|
|
|
|
<replaceable>CHROOT_DIR</replaceable> directory.
|
|
|
|
</para>
|
|
|
|
</listitem>
|
|
|
|
</varlistentry>
|
2009-03-14 16:39:57 +05:30
|
|
|
<varlistentry condition="sha_crypt">
|
2010-03-26 02:05:59 +05:30
|
|
|
<term>
|
|
|
|
<option>-s</option>, <option>--sha-rounds</option>
|
|
|
|
<replaceable>ROUNDS</replaceable>
|
|
|
|
</term>
|
2007-11-20 18:29:20 +05:30
|
|
|
<listitem>
|
|
|
|
<para>
|
|
|
|
Use the specified number of rounds to encrypt the passwords.
|
|
|
|
</para>
|
|
|
|
<para>
|
|
|
|
The value 0 means that the system will choose the default
|
|
|
|
number of rounds for the crypt method (5000).
|
|
|
|
</para>
|
|
|
|
<para>
|
|
|
|
A minimal value of 1000 and a maximal value of 999,999,999
|
|
|
|
will be enforced.
|
|
|
|
</para>
|
|
|
|
<para>
|
|
|
|
You can only use this option with the SHA256 or SHA512
|
|
|
|
crypt method.
|
|
|
|
</para>
|
|
|
|
<para>
|
|
|
|
By default, the number of rounds is defined by the
|
2010-03-26 02:05:59 +05:30
|
|
|
<option>SHA_CRYPT_MIN_ROUNDS</option> and
|
|
|
|
<option>SHA_CRYPT_MAX_ROUNDS</option> variables in
|
2007-11-20 18:29:20 +05:30
|
|
|
<filename>/etc/login.defs</filename>.
|
|
|
|
</para>
|
|
|
|
</listitem>
|
|
|
|
</varlistentry>
|
2007-10-07 17:16:16 +05:30
|
|
|
</variablelist>
|
|
|
|
</refsect1>
|
2007-10-07 17:17:01 +05:30
|
|
|
|
2007-10-07 17:16:16 +05:30
|
|
|
<refsect1 id='caveats'>
|
|
|
|
<title>CAVEATS</title>
|
2007-10-07 17:17:01 +05:30
|
|
|
<para>
|
2007-10-07 17:17:22 +05:30
|
|
|
Remember to set permissions or umask to prevent readability of
|
|
|
|
unencrypted files by other users.
|
2007-10-07 17:16:16 +05:30
|
|
|
</para>
|
|
|
|
</refsect1>
|
2007-10-07 17:17:01 +05:30
|
|
|
|
2010-03-26 02:05:59 +05:30
|
|
|
<refsect1 id='configuration'>
|
2007-11-24 01:28:10 +05:30
|
|
|
<title>CONFIGURATION</title>
|
|
|
|
<para>
|
|
|
|
The following configuration variables in
|
|
|
|
<filename>/etc/login.defs</filename> change the behavior of this
|
|
|
|
tool:
|
|
|
|
</para>
|
2010-03-26 02:05:59 +05:30
|
|
|
<variablelist condition="no_pam">
|
* man/chfn.1.xml: Uses CHFN_AUTH, CHFN_RESTRICT, LOGIN_STRING.
* man/chgpasswd.8.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS (SHA_CRYPT_MAX_ROUNDS).
* man/chpasswd.8.xml: Switch to using entities for ENCRYPT_METHOD,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS (SHA_CRYPT_MAX_ROUNDS).
* man/chsh.1.xml: Uses CHSH_AUTH, LOGIN_STRING.
* man/expiry.1.xml: Does not use any login.defs parameter.
* man/gpasswd.1.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS.
* man/login.defs.5.xml: Added CHSH_AUTH.
* man/login.defs.5.xml: Cross reference -> cross references.
* man/login.defs.5.xml: chfn only uses CHFN_AUTH when no_pam.
* man/login.defs.5.xml: chsh uses CHSH_AUTH, not CHFN_AUTH.
* man/login.defs.d/CHSH_AUTH.xml: Added.
* man/login.defs.5.xml: chsh uses parameters only when no_pam.
* man/login.defs.5.xml: expiry does not use CONSOLE_GROUPS, even
if linked in the binary.
* man/newusers.8.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, PASS_MAX_DAYS, PASS_MIN_DAYS, PASS_WARN_AGE,
SHA_CRYPT_MIN_ROUNDS, UMASK.
2007-11-27 04:57:56 +05:30
|
|
|
&ENCRYPT_METHOD;
|
|
|
|
&MD5_CRYPT_ENAB;
|
2010-03-26 02:05:59 +05:30
|
|
|
</variablelist>
|
|
|
|
<variablelist>
|
* man/chfn.1.xml: Uses CHFN_AUTH, CHFN_RESTRICT, LOGIN_STRING.
* man/chgpasswd.8.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS (SHA_CRYPT_MAX_ROUNDS).
* man/chpasswd.8.xml: Switch to using entities for ENCRYPT_METHOD,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS (SHA_CRYPT_MAX_ROUNDS).
* man/chsh.1.xml: Uses CHSH_AUTH, LOGIN_STRING.
* man/expiry.1.xml: Does not use any login.defs parameter.
* man/gpasswd.1.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, SHA_CRYPT_MIN_ROUNDS.
* man/login.defs.5.xml: Added CHSH_AUTH.
* man/login.defs.5.xml: Cross reference -> cross references.
* man/login.defs.5.xml: chfn only uses CHFN_AUTH when no_pam.
* man/login.defs.5.xml: chsh uses CHSH_AUTH, not CHFN_AUTH.
* man/login.defs.d/CHSH_AUTH.xml: Added.
* man/login.defs.5.xml: chsh uses parameters only when no_pam.
* man/login.defs.5.xml: expiry does not use CONSOLE_GROUPS, even
if linked in the binary.
* man/newusers.8.xml: Uses ENCRYPT_METHOD, MAX_MEMBERS_PER_GROUP,
MD5_CRYPT_ENAB, PASS_MAX_DAYS, PASS_MIN_DAYS, PASS_WARN_AGE,
SHA_CRYPT_MIN_ROUNDS, UMASK.
2007-11-27 04:57:56 +05:30
|
|
|
&SHA_CRYPT_MIN_ROUNDS; <!--documents also SHA_CRYPT_MAX_ROUNDS-->
|
2007-11-24 01:28:10 +05:30
|
|
|
</variablelist>
|
|
|
|
</refsect1>
|
|
|
|
|
2007-11-22 03:42:14 +05:30
|
|
|
<refsect1 id='files'>
|
|
|
|
<title>FILES</title>
|
|
|
|
<variablelist>
|
2010-03-26 02:05:59 +05:30
|
|
|
<varlistentry>
|
2007-11-22 03:42:14 +05:30
|
|
|
<term><filename>/etc/passwd</filename></term>
|
|
|
|
<listitem>
|
|
|
|
<para>User account information.</para>
|
|
|
|
</listitem>
|
|
|
|
</varlistentry>
|
2010-03-26 02:05:59 +05:30
|
|
|
<varlistentry>
|
2007-11-22 03:42:14 +05:30
|
|
|
<term><filename>/etc/shadow</filename></term>
|
|
|
|
<listitem>
|
|
|
|
<para>Secure user account information.</para>
|
|
|
|
</listitem>
|
|
|
|
</varlistentry>
|
2010-03-26 02:05:59 +05:30
|
|
|
<varlistentry>
|
2007-11-22 03:42:14 +05:30
|
|
|
<term><filename>/etc/login.defs</filename></term>
|
|
|
|
<listitem>
|
|
|
|
<para>Shadow password suite configuration.</para>
|
|
|
|
</listitem>
|
|
|
|
</varlistentry>
|
2009-05-09 18:44:56 +05:30
|
|
|
<varlistentry condition="pam">
|
|
|
|
<term><filename>/etc/pam.d/chpasswd</filename></term>
|
|
|
|
<listitem>
|
|
|
|
<para>PAM configuration for <command>chpasswd</command>.</para>
|
|
|
|
</listitem>
|
|
|
|
</varlistentry>
|
2007-11-22 03:42:14 +05:30
|
|
|
</variablelist>
|
|
|
|
</refsect1>
|
|
|
|
|
2007-10-07 17:16:16 +05:30
|
|
|
<refsect1 id='see_also'>
|
|
|
|
<title>SEE ALSO</title>
|
2007-10-07 17:17:01 +05:30
|
|
|
<para>
|
|
|
|
<citerefentry>
|
|
|
|
<refentrytitle>passwd</refentrytitle><manvolnum>1</manvolnum>
|
2007-10-07 17:16:16 +05:30
|
|
|
</citerefentry>,
|
|
|
|
<citerefentry>
|
2007-10-07 17:17:01 +05:30
|
|
|
<refentrytitle>newusers</refentrytitle><manvolnum>8</manvolnum>
|
2007-10-07 17:16:16 +05:30
|
|
|
</citerefentry>,
|
2010-03-26 02:05:59 +05:30
|
|
|
<phrase>
|
2009-05-26 01:11:43 +05:30
|
|
|
<citerefentry>
|
|
|
|
<refentrytitle>login.defs</refentrytitle><manvolnum>5</manvolnum>
|
|
|
|
</citerefentry>,
|
|
|
|
</phrase>
|
2007-11-20 18:29:20 +05:30
|
|
|
<citerefentry>
|
2009-05-09 18:44:56 +05:30
|
|
|
<refentrytitle>useradd</refentrytitle><manvolnum>8</manvolnum>
|
2007-10-07 17:17:01 +05:30
|
|
|
</citerefentry>.
|
2007-10-07 17:16:16 +05:30
|
|
|
</para>
|
|
|
|
</refsect1>
|
|
|
|
</refentry>
|