Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Script to help change passwd in AIX

Status
Not open for further replies.
lblauen

lblauen

Technical User
Aug 13, 2002
69
0
0
I'm looking for a script for AIX to help change roots password on many systems. We have to change roots password every other month and now I log into all the servers and make a new password for root. How can I do this in a script??

for i in `cat aixlist`
do
rsh $i passwd
??????
The aixlist has all the systems I need to figure out a way to type the command changepw test
This should go to each system as my id in this case root and change the password to test. Can this be done and how? I looked at the command from smit and couldn't figure out how to make it non interactive.
 
Sort by date Sort by votes
There is (deliberately) no easy solution.

Options are
1) use expect - I've never done this so I can't comment further
2) use your favourite script language to edit /etc/security/passwd so that the encrypted password string is the same on all boxes - very dangerous. if you corrupt /etc/security/passwd you break the box.
3) log on individually and change each one by hand (which is what I do)
4) If you're using AIX 4.3.3 then there is a password amending tool available on the Bull website aixtools package. You can run this remotely or from batch files.

Columb Healy
Living with a seeker after the truth is infinitely preferable to living with one who thinks they've found it.
 
Upvote 0 Downvote
There is (deliberately) no easy solution.

Options are
1) use expect - I've never done this so I can't comment further
2) use your favourite script language to edit /etc/security/passwd so that the encrypted password string is the same on all boxes - very dangerous. if you corrupt /etc/security/passwd you break the box.
3) log on individually and change each one by hand (which is what I do)
4) If you're using AIX 4.3.3 then there is a password amending tool available on the Bull website aixtools package. You can run this remotely or from batch files.

BTW - shouldn't this be in the AIX forum

Columb Healy
Living with a seeker after the truth is infinitely preferable to living with one who thinks they've found it.
 
Upvote 0 Downvote
No this is a script question. I too do #3 but there should be a easyer way to do it.
 
Upvote 0 Downvote
How many systems are you talking about? Do you really want a tool that will allow a hacker to own all of them at once (not that having the same root password on all servers doesn't already do that)?

You could build a fairly secure solution using ssh/scp, expect, and ssh keys on a removable media, but it would still be a single point of compromise for all of your machines. Plus it wouldn't exactly be easy to implement.

Ease of use and security are diametrically opposed attributes. When it comes to something like the root password, it's better to be on the security side.

Rod Knowlton
IBM Certified Advanced Technical Expert pSeries and AIX 5L
CompTIA Linux+
CompTIA Security+

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

grazinggoat2
  • Locked
  • Question
ksh script to add multiple lines to csv cell formatting help
Replies
0
Views
73
grazinggoat2
grazinggoat2
EdLentz
  • Locked
  • Question
How can I escape $1 and && in a SED command
Replies
1
Views
116
feherke
feherke
pax94
  • Locked
  • Question
Script automating dynamic queries in a remote host
Replies
0
Views
63
pax94
pax94
g33man
  • Locked
  • Article
BASH script - array problem 1
Replies
1
Views
70
feherke
feherke
SDCSA
  • Locked
  • Question
awk command to rearrange data
Replies
1
Views
80
feherke
feherke

Part and Inventory Search

Sponsor

Back
Top