summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJonas Smedegaard <jonas@auryn.jones.dk>2006-09-01 01:05:12 +0200
committerJonas Smedegaard <jonas@auryn.jones.dk>2006-09-01 01:05:12 +0200
commit57d381d06504d871a410dad556359688a5e7aca6 (patch)
tree4740e93e383310e8429a57e990bdbb8fbc3af80b
parent8eb5cda0031a56727d6f130ae3a1fa68271f3739 (diff)
Use new routines localresetpasswd and localresetpasswdexpiry
-rw-r--r--account/commands.mdwn11
1 files changed, 5 insertions, 6 deletions
diff --git a/account/commands.mdwn b/account/commands.mdwn
index 3229827..3c36ffa 100644
--- a/account/commands.mdwn
+++ b/account/commands.mdwn
@@ -68,22 +68,21 @@ FIXME: localmaildomainupdate should email diff file to postmaster@homebase.dk
## Extend password lifespan
-When a user has changed password into something personal, the password lifespan is extended to 1 year:
+If a user exceeds password lifespan, and still remembers the old password, the lifespan can be extended slightly to open a new window for changing it:
- (user=<username>; chage -M360 -W30 $user)
+ localresetpasswdexpiry <username>
-
-TODO: The above command should ideally never ever be invoked manyally, but automatically through PAM
+TODO: The above command should ideally emit an sms and/or email rewuesting the user to immediately change password
## Reset password
1. Reset the actual password using the following command:
- (user=<username>; gpw 10 11 && finger $user && passwd $user && chage -M30 -W14 $user)
+ localresetpasswd <username>
2. Send a cellphone text message similar to the one for creating a new account.
-TODO: Write a script to do the above + inject a self-chosen password + warn before resetting + spit out sms
+TODO: The above command should ideally emit an sms and/or email rewuesting the user to immediately change password
## Warn about password expiry