X-Git-Url: http://pere.pagekite.me/gitweb/homepage.git/blobdiff_plain/e1a848631f3018a38b20f81b6517319283f236e2..0bfca3b9c82e95b306eb58737f021ddd42c3eae5:/blog/archive/2010/05/05.rss diff --git a/blog/archive/2010/05/05.rss b/blog/archive/2010/05/05.rss index 89218589f8..b16b324e26 100644 --- a/blog/archive/2010/05/05.rss +++ b/blog/archive/2010/05/05.rss @@ -3,14 +3,14 @@ Petter Reinholdtsen - Entries from May 2010 Entries from May 2010 - ../../../ + http://people.skolelinux.org/pere/blog/ Forcing new users to change their password on first login - ../../../Forcing_new_users_to_change_their_password_on_first_login.html - ../../../Forcing_new_users_to_change_their_password_on_first_login.html - Sun, 2 May 2010 13:40:00 +0200 + http://people.skolelinux.org/pere/blog/Forcing_new_users_to_change_their_password_on_first_login.html + http://people.skolelinux.org/pere/blog/Forcing_new_users_to_change_their_password_on_first_login.html + Sun, 2 May 2010 13:47:00 +0200 <p>One interesting feature in Active Directory, is the ability to create a new user with an expired password, and thus force the user to @@ -69,6 +69,19 @@ sure only the user itself have the account password?</p> <p>If you want to comment on or help out with implementing this for Debian Edu, please contact us on debian-edu@lists.debian.org.</p> + +<p>Update 2010-05-02 17:20: Paul Tötterman tells me on IRC that the +shadow(8) page in Debian/testing now state that setting the date of +last password change to zero (0) will force the password to be changed +on the first login. This was not mentioned in the manual in Lenny, so +I did not notice this in my initial testing. I have tested it on +Squeeze, and '<tt>chage -d 0 username</tt>' do work there. I have not +tested it on Lenny yet.</p> + +<p>Update 2010-05-02-19:05: Jim Paris tells me via email that an +equivalent command to expire a password is '<tt>passwd -e +username</tt>', which insert zero into the date of the last password +change.</p>