• Re: How to change password on multiple hosts (can use ssh)

    From anonymous@1:0/0 to All on Thu Apr 26 01:41:11 2012
    On 02/09/09 14:01, Tech Geek wrote:
    Hi,

    We have about 125 Linux(RH)/Unix(Solaris) servers and to be in line with
    the security policy we have to change our password every 90 days. How
    can I change the password on all the server in an automated fashion....I
    can use ssh. Please help me with options.

    Thanks in advance.
    centrify.com
    i heard about them through a tech convention and realized this could be
    an amazing administrative tool. it is designed for an AD domain system
    so if you are running your domain with linux/unix only this will
    probably not solve the problem.

    --- MBSE BBS v0.95.13 (GNU/Linux-x86_64)
    * Origin: The Kofo BBS MBSE - telnet://fido1.kofobbs.ne
  • From Jim Haynes@110:300/1.1 to All on Thu Apr 26 17:36:29 2012
    On 02/09/09 14:01, Tech Geek wrote:
    Hi,

    We have about 125 Linux(RH)/Unix(Solaris) servers and to be in line with
    the security policy we have to change our password every 90 days. How
    can I change the password on all the server in an automated fashion....I
    can use ssh. Please help me with options.

    Thanks in advance.


    Kerberos



    --- MBSE BBS v0.95.13 (GNU/Linux-x86_64)
    * Origin: University of Arkansas Alumni (110:300/1.1@linuxnet)
  • From unruh@1:0/0 to All on Thu Apr 26 18:21:37 2012
    On 2012-04-25, anonymous <no@email.com> wrote:
    On 02/09/09 14:01, Tech Geek wrote:
    Hi,

    We have about 125 Linux(RH)/Unix(Solaris) servers and to be in line with
    the security policy we have to change our password every 90 days. How
    can I change the password on all the server in an automated fashion....I
    can use ssh. Please help me with options.

    Thanks in advance.
    centrify.com
    i heard about them through a tech convention and realized this could be
    an amazing administrative tool. it is designed for an AD domain system
    so if you are running your domain with linux/unix only this will
    probably not solve the problem.

    ARe you the sysadmin or a user?
    If a user:
    1) persuade the sysadmins to institute NIS.
    2) write a script
    #!/bin/bash
    OLDPASS=$1
    NEWPASS=$2
    for i in `cat ~\hostnames`
    do

    ssh $i passwd <<EOF
    $OLDPASS
    $NEWPASS
    $NEWPASS
    EOF
    done

    where ~/hostnames contains the hostnames of all the computers you want
    tochange the password on.
    Note this is somewhat dangerous as the old and new passwords will be
    visible to someone doing a ps -auxww
    You could have the script ask for the old and new passwords at the
    beginning instead etc, but you get the idea

    Also I have not tested this so am not sure about the input feeding to
    passwd with te <<EOF on the remote machine

    You had better make sure that the passwd does not reject the password or
    you could be stuck in an awkward situtation.


    --- MBSE BBS v0.95.13 (GNU/Linux-x86_64)
    * Origin: The Kofo BBS MBSE - telnet://fido1.kofobbs.ne