Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

Hi

@villykruse

I run "man login" & read it. I understood that I should edit parameters in file called "/ect/login.defs" I run: vi /etc/login.defs as a user (not root) just to see it's contents. But I did not see the parameters that given !! I saw the following:

#

Please note that the parameters in this configuration file control the

behavior of the tools from the shadow-utils component. None of these

tools uses the PAM mechanism, and the utilities that use PAM (such as the

passwd command) should therefore be configured elsewhere. Refer to

/etc/pam.d/system-auth for more information.

#

REQUIRED

Directory where mailboxes reside, _or_ name of file, relative to the

home directory. If you _do_ define both, MAIL_DIR takes precedence.

QMAIL_DIR is for Qmail

#

QMAIL_DIR Maildir

MAIL_DIR /var/spool/mail

MAIL_FILE .mail

Password aging controls:

#

PASS_MAX_DAYS Maximum number of days a password may be used.

PASS_MIN_DAYS Minimum number of days allowed between password changes.

PASS_MIN_LEN Minimum acceptable password length.

PASS_WARN_AGE Number of days warning given before a password expires.

# PASS_MAX_DAYS 99999 PASS_MIN_DAYS 0 PASS_MIN_LEN 5 PASS_WARN_AGE 7

#

Min/max values for automatic uid selection in useradd

# UID_MIN 1000 UID_MAX 60000

System accounts

SYS_UID_MIN 201 SYS_UID_MAX 999

#

Min/max values for automatic gid selection in groupadd

# GID_MIN 1000 GID_MAX 60000

System accounts

SYS_GID_MIN 201 SYS_GID_MAX 999

#

If defined, this command is run when removing a user.

It should remove any at/cron/print jobs etc. owned by

the user to be removed (passed as the first argument).

#

USERDEL_CMD /usr/sbin/userdel_local

#

If useradd should create home directories for users by default

On RH systems, we do. This option is overridden with the -m flag on

useradd command line.

# CREATE_HOME yes

The permission mask is initialized to this value. If not specified,

the permission mask will be initialized to 022.

UMASK 077

This enables userdel to remove user groups if no members exist.

# USERGROUPS_ENAB yes

Use SHA512 to encrypt password.

ENCRYPT_METHOD SHA512


Any further help please !

click to hide/show revision 2
No.2 Revision

Hi

@villykruse

I run "man login" & read it. I understood that I should edit parameters in file called "/ect/login.defs" I run: vi /etc/login.defs as a user (not root) just to see it's contents. But I did not see the parameters that given !! I saw the following:

#

#
# Please note that the parameters in this configuration file control the

the # behavior of the tools from the shadow-utils component. None of these

these # tools uses the PAM mechanism, and the utilities that use PAM (such as the

the # passwd command) should therefore be configured elsewhere. Refer to

to # /etc/pam.d/system-auth for more information.

#

REQUIRED

information. # # *REQUIRED* # Directory where mailboxes reside, _or_ name of file, relative to the

the # home directory. If you _do_ define both, MAIL_DIR takes precedence.

precedence. # QMAIL_DIR is for Qmail

#

QMAIL_DIR Maildir

Qmail # #QMAIL_DIR Maildir MAIL_DIR /var/spool/mail

MAIL_FILE .mail

/var/spool/mail #MAIL_FILE .mail # Password aging controls:

#

controls: # # PASS_MAX_DAYS Maximum number of days a password may be used.

used. # PASS_MIN_DAYS Minimum number of days allowed between password changes.

changes. # PASS_MIN_LEN Minimum acceptable password length.

length. # PASS_WARN_AGE Number of days warning given before a password expires.

expires. # PASS_MAX_DAYS 99999 PASS_MIN_DAYS 0 PASS_MIN_LEN 5 PASS_WARN_AGE 7

#

7 # # Min/max values for automatic uid selection in useradd

useradd # UID_MIN 1000 UID_MAX 60000

60000 # System accounts

accounts SYS_UID_MIN 201 SYS_UID_MAX 999

#

999 # # Min/max values for automatic gid selection in groupadd

groupadd # GID_MIN 1000 GID_MAX 60000

60000 # System accounts

accounts SYS_GID_MIN 201 SYS_GID_MAX 999

#

999 # # If defined, this command is run when removing a user.

user. # It should remove any at/cron/print jobs etc. owned by

by # the user to be removed (passed as the first argument).

#

USERDEL_CMD /usr/sbin/userdel_local

#

argument). # #USERDEL_CMD /usr/sbin/userdel_local # # If useradd should create home directories for users by default

default # On RH systems, we do. This option is overridden with the -m flag on

on # useradd command line.

line. # CREATE_HOME yes

yes # The permission mask is initialized to this value. If not specified,

specified, # the permission mask will be initialized to 022.

022. UMASK 077

077 # This enables userdel to remove user groups if no members exist.

exist. # USERGROUPS_ENAB yes

yes # Use SHA512 to encrypt password.

password. ENCRYPT_METHOD SHA512

SHA512

Any further help please !