Changeset 673b0d8 for chapter06/shadow.xml
- Timestamp:
- 05/03/2004 10:59:46 AM (20 years ago)
- Branches:
- 10.0, 10.0-rc1, 10.1, 10.1-rc1, 11.0, 11.0-rc1, 11.0-rc2, 11.0-rc3, 11.1, 11.1-rc1, 11.2, 11.2-rc1, 11.3, 11.3-rc1, 12.0, 12.0-rc1, 12.1, 12.1-rc1, 6.0, 6.1, 6.1.1, 6.3, 6.4, 6.5, 6.6, 6.7, 6.8, 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.5-systemd, 7.6, 7.6-systemd, 7.7, 7.7-systemd, 7.8, 7.8-systemd, 7.9, 7.9-systemd, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, arm, bdubbs/gcc13, ml-11.0, multilib, renodr/libudev-from-systemd, s6-init, trunk, v5_1, v5_1_1, xry111/arm64, xry111/arm64-12.0, xry111/clfs-ng, xry111/lfs-next, xry111/loongarch, xry111/loongarch-12.0, xry111/loongarch-12.1, xry111/mips64el, xry111/pip3, xry111/rust-wip-20221008, xry111/update-glibc
- Children:
- 0c43171, 2ec64b3, a4a675f
- Parents:
- 287ea55
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
chapter06/shadow.xml
r287ea55 r673b0d8 1 <?xml version="1.0" encoding="ISO-8859-1"?> 2 <!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.3//EN" "http://www.oasis-open.org/docbook/xml/4.3/docbookx.dtd" [ 3 <!ENTITY % general-entities SYSTEM "../general.ent"> 4 %general-entities; 5 ]> 1 6 <sect1 id="ch-system-shadow" xreflabel="Shadow"> 2 <title>Installing Shadow-&shadow-version;</title> 3 <?dbhtml filename="shadow.html" dir="chapter06"?> 7 <title>Shadow-&shadow-version;</title> 8 <?dbhtml filename="shadow.html"?> 9 10 <indexterm zone="ch-system-shadow"><primary sortas="a-Shadow">Shadow</primary></indexterm> 4 11 5 12 <para>The Shadow package contains programs for handling passwords in a secure 6 13 way.</para> 7 14 8 <screen>&buildtime; &shadow-time;9 &diskspace; &shadow-compsize;</screen>10 11 &aa-shadow-down; 12 &aa-shadow-dep; 13 14 <sect2><title> </title><para> </para></sect2> 15 <screen>&buildtime; 0.4 SBU 16 &diskspace; 11 MB</screen> 17 18 <para>Shadow installation depends on: Bash, Binutils, Bison, Coreutils, 19 Diffutils, GCC, Gettext, Glibc, Grep, Make, Sed.</para> 20 21 15 22 16 23 <sect2> … … 41 48 <screen><userinput>make</userinput></screen> 42 49 43 <para> Andinstall it:</para>50 <para>Then install it:</para> 44 51 45 52 <screen><userinput>make install</userinput></screen> … … 52 59 <para>Instead of using the default <emphasis>crypt</emphasis> method, we want 53 60 to use the more secure <emphasis>MD5</emphasis> method of password encryption, 54 which in additionallows passwords longer than 8 characters. We also need to61 which also allows passwords longer than 8 characters. We also need to 55 62 change the obsolete <filename class="directory">/var/spool/mail</filename> 56 location for user mailboxes that Shadow uses by default to the <filename 57 class="directory">/var/mail</filename> location used nowadays. We accomplish63 location for user mailboxes that Shadow uses by default to the <filename 64 class="directory">/var/mail</filename> location used currently. We accomplish 58 65 both these things by changing the relevant configuration file while copying it 59 66 to its destination (it's probably better to cut-and-paste this rather than try … … 61 68 62 69 <screen><userinput>sed -e 's%#MD5_CRYPT_ENAB.no%MD5_CRYPT_ENAB yes%' \ 63 -e 's%/var/spool/mail%/var/mail%' \64 etc/login.defs.linux > /etc/login.defs</userinput></screen>70 -e 's%/var/spool/mail%/var/mail%' \ 71 etc/login.defs.linux > /etc/login.defs</userinput></screen> 65 72 66 73 <para>Move some misplaced symlinks to their proper locations:</para> … … 92 99 </sect2> 93 100 94 <sect2><title> </title><para> </para></sect2> 95 96 <sect2><title>Configuring Shadow</title> 101 102 <sect2 id="conf-shadow"><title>Configuring Shadow</title> 103 <indexterm zone="conf-shadow"> 104 <primary sortas="a-Shadow">Shadow</primary> 105 <secondary>configuring</secondary></indexterm> 97 106 98 107 <para>This package contains utilities to add, modify and delete users and … … 109 118 <screen><userinput>pwconv</userinput></screen> 110 119 111 <para> And to enable shadowed group passwords, run:</para>120 <para>To enable shadowed group passwords, run:</para> 112 121 113 122 <screen><userinput>grpconv</userinput></screen> … … 120 129 </sect2> 121 130 122 <sect2><title> </title><para> </para></sect2>123 131 124 132 <sect2> … … 131 139 </sect2> 132 140 133 &aa-shadow-shortdesc; 134 &aa-shadow-desc; 141 142 <sect2 id="contents-shadow"><title>Contents of Shadow</title> 143 144 <para><emphasis>Installed programs</emphasis>: chage, chfn, chpasswd, chsh, 145 dpasswd, expiry, faillog, gpasswd, groupadd, groupdel, groupmod, groups, grpck, 146 grpconv, grpunconv, lastlog, login, logoutd, mkpasswd, newgrp, newusers, 147 passwd, pwck, pwconv, pwunconv, sg (link to newgrp), useradd, userdel, usermod, 148 vigr (link to vipw) and vipw</para> 149 150 </sect2> 151 152 <sect2><title>Short descriptions</title> 153 154 <indexterm zone="ch-system-shadow chage"><primary sortas="b-chage">chage</primary></indexterm> 155 <para id="chage"><command>chage</command> is used to change the maximum number of 156 days between obligatory password changes.</para> 157 158 <indexterm zone="ch-system-shadow chfn"><primary sortas="b-chfn">chfn</primary></indexterm> 159 <para id="chfn"><command>chfn</command> is used to change a user's full name and 160 some other info.</para> 161 162 <indexterm zone="ch-system-shadow chpasswd"><primary sortas="b-chpasswd">chpasswd</primary></indexterm> 163 <para id="chpasswd"><command>chpasswd</command> is used to update the passwords of a 164 whole series of user accounts in one go.</para> 165 166 <indexterm zone="ch-system-shadow chsh"><primary sortas="b-chsh">chsh</primary></indexterm> 167 <para id="chsh"><command>chsh</command> is used to change a user's default 168 login shell.</para> 169 170 <indexterm zone="ch-system-shadow dpasswd"><primary sortas="b-dpasswd">dpasswd</primary></indexterm> 171 <para id="dpasswd"><command>dpasswd</command> is used to change dial-up passwords for 172 user login shells.</para> 173 174 <indexterm zone="ch-system-shadow expiry"><primary sortas="b-expiry">expiry</primary></indexterm> 175 <para id="expiry"><command>expiry</command> checks and enforces the current password 176 expiration policy.</para> 177 178 <indexterm zone="ch-system-shadow faillog"><primary sortas="b-faillog">faillog</primary></indexterm> 179 <para id="faillog"><command>faillog</command> is used to examine the log of login 180 failures, to set a maximum number of failures before an account is blocked, 181 or to reset the failure count.</para> 182 183 <indexterm zone="ch-system-shadow gpasswd"><primary sortas="b-gpasswd">gpasswd</primary></indexterm> 184 <para id="gpasswd"><command>gpasswd</command> is used to add and delete members and 185 administrators to groups.</para> 186 187 <indexterm zone="ch-system-shadow groupadd"><primary sortas="b-groupadd">groupadd</primary></indexterm> 188 <para id="groupadd"><command>groupadd</command> creates a group with the given 189 name.</para> 190 191 <indexterm zone="ch-system-shadow groupdel"><primary sortas="b-groupdel">groupdel</primary></indexterm> 192 <para id="groupdel"><command>groupdel</command> deletes the group with the given 193 name.</para> 194 195 <indexterm zone="ch-system-shadow groupmod"><primary sortas="b-groupmod">groupmod</primary></indexterm> 196 <para id="groupmod"><command>groupmod</command> is used to modify the given group's 197 name or GID.</para> 198 199 <indexterm zone="ch-system-shadow groups"><primary sortas="b-groups">groups</primary></indexterm> 200 <para id="groups"><command>groups</command> reports the groups of which the given 201 users are members.</para> 202 203 <indexterm zone="ch-system-shadow grpck"><primary sortas="b-grpck">grpck</primary></indexterm> 204 <para id="grpck"><command>grpck</command> verifies the integrity of the group files, 205 <filename>/etc/group</filename> and <filename>/etc/gshadow</filename>.</para> 206 207 <indexterm zone="ch-system-shadow grpconv"><primary sortas="b-grpconv">grpconv</primary></indexterm> 208 <para id="grpconv"><command>grpconv</command> creates or updates the shadow group file 209 from the normal group file.</para> 210 211 <indexterm zone="ch-system-shadow grpunconv"><primary sortas="b-grpunconv">grpunconv</primary></indexterm> 212 <para id="grpunconv"><command>grpunconv</command> updates <filename>/etc/group</filename> 213 from <filename>/etc/gshadow</filename> and then deletes the latter.</para> 214 215 <indexterm zone="ch-system-shadow lastlog"><primary sortas="b-lastlog">lastlog</primary></indexterm> 216 <para id="lastlog"><command>lastlog</command> reports the most recent login of all 217 users, or of a given user.</para> 218 219 <indexterm zone="ch-system-shadow login"><primary sortas="b-login">login</primary></indexterm> 220 <para id="login"><command>login</command> is used by the system to let users sign on.</para> 221 222 <indexterm zone="ch-system-shadow logoutd"><primary sortas="b-logoutd">logoutd</primary></indexterm> 223 <para id="logoutd"><command>logoutd</command> is a daemon used to enforce restrictions 224 on log-on time and ports.</para> 225 226 <indexterm zone="ch-system-shadow mkpasswd"><primary sortas="b-mkpasswd">mkpasswd</primary></indexterm> 227 <para id="mkpasswd"><command>mkpasswd</command> encrypts the given password using the 228 also given perturbation.</para> 229 230 <indexterm zone="ch-system-shadow newgrp"><primary sortas="b-newgrp">newgrp</primary></indexterm> 231 <para id="newgrp"><command>newgrp</command> is used to change the current GID during 232 a login session.</para> 233 234 <indexterm zone="ch-system-shadow newusers"><primary sortas="b-newusers">newusers</primary></indexterm> 235 <para id="newusers"><command>newusers</command> is used to create or update a whole 236 series of user accounts in one go.</para> 237 238 <indexterm zone="ch-system-shadow passwd"><primary sortas="b-passwd">passwd</primary></indexterm> 239 <para id="passwd"><command>passwd</command> is used to change the password for a user 240 or group account.</para> 241 242 <indexterm zone="ch-system-shadow pwck"><primary sortas="b-pwck">pwck</primary></indexterm> 243 <para id="pwck"><command>pwck</command> verifies the integrity of the password files, 244 <filename>/etc/passwd</filename> and <filename>/etc/shadow</filename>.</para> 245 246 <indexterm zone="ch-system-shadow pwconv"><primary sortas="b-pwconv">pwconv</primary></indexterm> 247 <para id="pwconv"><command>pwconv</command> creates or updates the shadow password file 248 from the normal password file.</para> 249 250 <indexterm zone="ch-system-shadow pwunconv"><primary sortas="b-pwunconv">pwunconv</primary></indexterm> 251 <para id="pwunconv"><command>pwunconv</command> updates <filename>/etc/passwd</filename> 252 from <filename>/etc/shadow</filename> and then deletes the latter.</para> 253 254 <indexterm zone="ch-system-shadow sg"><primary sortas="b-sg">sg</primary></indexterm> 255 <para id="sg"><command>sg</command> executes a given command while the user's GID 256 is set to that of the given group.</para> 257 258 <indexterm zone="ch-system-shadow useradd"><primary sortas="b-useradd">useradd</primary></indexterm> 259 <para id="useradd"><command>useradd</command> creates a new user with the given name, 260 or updates the default new-user information.</para> 261 262 <indexterm zone="ch-system-shadow userdel"><primary sortas="b-userdel">userdel</primary></indexterm> 263 <para id="userdel"><command>userdel</command> deletes the given user account.</para> 264 265 <indexterm zone="ch-system-shadow usermod"><primary sortas="b-usermod">usermod</primary></indexterm> 266 <para id="usermod"><command>usermod</command> is used to modify the given user's 267 login name, UID (User Identification), shell, initial group, home directory, and the like.</para> 268 269 <indexterm zone="ch-system-shadow vigr"><primary sortas="b-vigr">vigr</primary></indexterm> 270 <para id="vigr"><command>vigr</command> can be used to edit the 271 <filename>/etc/group</filename> or <filename>/etc/gshadow</filename> 272 files.</para> 273 274 <indexterm zone="ch-system-shadow vipw"><primary sortas="b-vipw">vipw</primary></indexterm> 275 <para id="vipw"><command>vipw</command> can be used to edit the 276 <filename>/etc/passwd</filename> or <filename>/etc/shadow</filename> 277 files.</para> 278 279 <indexterm zone="ch-system-shadow libmisc"><primary sortas="c-libmisc">libmisc</primary></indexterm> 280 <para id="libmisc"><command>libmisc</command>...</para> 281 282 <indexterm zone="ch-system-shadow libshadow"><primary sortas="c-libshadow">libshadow</primary></indexterm> 283 <para id="libshadow"><command>libshadow</command> contains functions used by most 284 programs in this package.</para> 285 286 </sect2> 287 288 135 289 136 290 </sect1> 137
Note:
See TracChangeset
for help on using the changeset viewer.