Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

No "shadow" file and NOT a trusted system, HP-UX 3

Status
Not open for further replies.
penguin1

penguin1

IS-IT--Management
Mar 5, 2001
15
0
0
US
X-) I am experimenting with passwords and have discovered that I do not have a /etc/shadow file. I read in an Unix manual that HP-UX does not use a /etc/shadow file for passwords. In addition, I discovered that HP-UX sets up this security when you make your system a "trusted" system. Our system is not "trusted". s-) What are the ramifications (i.e., problems and headaches) I will encounter if I make the system "trusted"?

;-) What I am trying to do is setup a schedule for passwords to expire on the same day as our NT passwords expire. It appears that I have to have the system "trusted" before I can setup a time frame for expiration. Is this true?
 
Sort by date Sort by votes
Hi Penguin,

I've never implemented trusted systems, Our auditors suggested it, but from what I remember, and all I remember is that it produces masses of data in logs........however I'm sure that someone else will give you a much more experienced opinon.

I do know something about is your second question, that is you don't need trusted systems to expire passwords.
You would have to reset all the users passwords to get them in sync if that's what you wanted, but regardless, to expire the passwords when you want, add the following characters to the end of the encrypted passwd string in the password file

,xy

where x is the number of weeks that the password is valid, and y is the min number of weeks before the password can be changed

You use values like these

Value Number of weeks
. 0
/ 1
0-9 2-11
A-Z 12-37
a-z 36-63

I know that you can do password aging when setting up new accound via SAM, I'm not sure if you can modify existing users to have password aging.

Hope some of this helps

Regards
Queenie
 
Upvote 0 Downvote
I've used trusted systems without *too* many problems. Just make sure you apply *ALL* of the recommended patches for trusted systems. Mike
michael.j.lacey@ntlworld.com
Email welcome if you're in a hurry or something -- but post in tek-tips as well please, and I will post my reply here as well.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ziggy6
  • Question
Help using awk or some kind of Tool in Unix to Read a file, cut fields and write to a file
Replies
2
Views
172
mikrom
mikrom
LoPath
  • Locked
  • Question
Debian Linux "stretch" DHCP issues
Replies
1
Views
126
LoPath
LoPath
Tina_9841
  • Locked
  • Question
Extract value from HTML file using shell script
Replies
3
Views
220
feherke
feherke
MikeDave888
  • Locked
  • Question
Run a Crontab job on odd/even weeks 1
Replies
2
Views
149
MikeDave888
MikeDave888
MattCross
  • Locked
  • Question
SCO Unix 5 not booting
Replies
0
Views
43
MattCross
MattCross

Part and Inventory Search

Sponsor

Back
Top