diff options
author | Jonas Smedegaard <jonas@auryn.jones.dk> | 2006-09-01 01:05:12 +0200 |
---|---|---|
committer | Jonas Smedegaard <jonas@auryn.jones.dk> | 2006-09-01 01:05:12 +0200 |
commit | 57d381d06504d871a410dad556359688a5e7aca6 (patch) | |
tree | 4740e93e383310e8429a57e990bdbb8fbc3af80b | |
parent | 8eb5cda0031a56727d6f130ae3a1fa68271f3739 (diff) |
Use new routines localresetpasswd and localresetpasswdexpiry
-rw-r--r-- | account/commands.mdwn | 11 |
1 files changed, 5 insertions, 6 deletions
diff --git a/account/commands.mdwn b/account/commands.mdwn index 3229827..3c36ffa 100644 --- a/account/commands.mdwn +++ b/account/commands.mdwn @@ -68,22 +68,21 @@ FIXME: localmaildomainupdate should email diff file to postmaster@homebase.dk ## Extend password lifespan -When a user has changed password into something personal, the password lifespan is extended to 1 year: +If a user exceeds password lifespan, and still remembers the old password, the lifespan can be extended slightly to open a new window for changing it: - (user=<username>; chage -M360 -W30 $user) + localresetpasswdexpiry <username> - -TODO: The above command should ideally never ever be invoked manyally, but automatically through PAM +TODO: The above command should ideally emit an sms and/or email rewuesting the user to immediately change password ## Reset password 1. Reset the actual password using the following command: - (user=<username>; gpw 10 11 && finger $user && passwd $user && chage -M30 -W14 $user) + localresetpasswd <username> 2. Send a cellphone text message similar to the one for creating a new account. -TODO: Write a script to do the above + inject a self-chosen password + warn before resetting + spit out sms +TODO: The above command should ideally emit an sms and/or email rewuesting the user to immediately change password ## Warn about password expiry |