New upstream version 4.19.3
This commit is contained in:
+21
-9
@@ -1,7 +1,7 @@
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.18.1 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2025 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
@@ -69,6 +69,8 @@ am__make_running_with_option = \
|
||||
test $$has_opt = yes
|
||||
am__make_dryrun = (target_option=n; $(am__make_running_with_option))
|
||||
am__make_keepgoing = (target_option=k; $(am__make_running_with_option))
|
||||
am__rm_f = rm -f $(am__rm_f_notfound)
|
||||
am__rm_rf = rm -rf $(am__rm_f_notfound)
|
||||
pkgdatadir = $(datadir)/@PACKAGE@
|
||||
pkgincludedir = $(includedir)/@PACKAGE@
|
||||
pkglibdir = $(libdir)/@PACKAGE@
|
||||
@@ -162,10 +164,9 @@ am__base_list = \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g'
|
||||
am__uninstall_files_from_dir = { \
|
||||
test -z "$$files" \
|
||||
|| { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && rm -f $$files; }; \
|
||||
{ test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && echo $$files | $(am__xargs_n) 40 $(am__rm_f); }; \
|
||||
}
|
||||
man1dir = $(mandir)/man1
|
||||
am__installdirs = "$(DESTDIR)$(man1dir)" "$(DESTDIR)$(man3dir)" \
|
||||
@@ -262,6 +263,7 @@ EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
FILECMD = @FILECMD@
|
||||
GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@
|
||||
GMSGFMT = @GMSGFMT@
|
||||
GMSGFMT_015 = @GMSGFMT_015@
|
||||
@@ -361,8 +363,10 @@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@
|
||||
am__include = @am__include@
|
||||
am__leading_dot = @am__leading_dot@
|
||||
am__quote = @am__quote@
|
||||
am__rm_f_notfound = @am__rm_f_notfound@
|
||||
am__tar = @am__tar@
|
||||
am__untar = @am__untar@
|
||||
am__xargs_n = @am__xargs_n@
|
||||
bindir = @bindir@
|
||||
build = @build@
|
||||
build_alias = @build_alias@
|
||||
@@ -847,6 +851,7 @@ cscopelist-am: $(am__tagged_files)
|
||||
|
||||
distclean-tags:
|
||||
-rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
@@ -935,11 +940,11 @@ install-strip:
|
||||
mostlyclean-generic:
|
||||
|
||||
clean-generic:
|
||||
-test -z "$(CLEANFILES)" || rm -f $(CLEANFILES)
|
||||
-$(am__rm_f) $(CLEANFILES)
|
||||
|
||||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-$(am__rm_f) $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || $(am__rm_f) $(CONFIG_CLEAN_VPATH_FILES)
|
||||
|
||||
maintainer-clean-generic:
|
||||
@echo "This command is intended for maintainers to use"
|
||||
@@ -1078,3 +1083,10 @@ generate_mans.deps: $(man_XMANS)
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
||||
# Tell GNU make to disable its built-in pattern rules.
|
||||
%:: %,v
|
||||
%:: RCS/%,v
|
||||
%:: RCS/%
|
||||
%:: s.%
|
||||
%:: SCCS/s.%
|
||||
|
||||
+1
-1
@@ -1,2 +1,2 @@
|
||||
<!ENTITY GROUP_NAME_MAX_LENGTH '32'>
|
||||
<!ENTITY SHADOW_UTILS_VERSION '4.19.2'>
|
||||
<!ENTITY SHADOW_UTILS_VERSION '4.19.3'>
|
||||
|
||||
+20
-8
@@ -1,7 +1,7 @@
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.18.1 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2025 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
@@ -69,6 +69,8 @@ am__make_running_with_option = \
|
||||
test $$has_opt = yes
|
||||
am__make_dryrun = (target_option=n; $(am__make_running_with_option))
|
||||
am__make_keepgoing = (target_option=k; $(am__make_running_with_option))
|
||||
am__rm_f = rm -f $(am__rm_f_notfound)
|
||||
am__rm_rf = rm -rf $(am__rm_f_notfound)
|
||||
pkgdatadir = $(datadir)/@PACKAGE@
|
||||
pkgincludedir = $(includedir)/@PACKAGE@
|
||||
pkglibdir = $(libdir)/@PACKAGE@
|
||||
@@ -147,10 +149,9 @@ am__base_list = \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g'
|
||||
am__uninstall_files_from_dir = { \
|
||||
test -z "$$files" \
|
||||
|| { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && rm -f $$files; }; \
|
||||
{ test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && echo $$files | $(am__xargs_n) 40 $(am__rm_f); }; \
|
||||
}
|
||||
man1dir = $(mandir)/man1
|
||||
am__installdirs = "$(DESTDIR)$(man1dir)" "$(DESTDIR)$(man5dir)" \
|
||||
@@ -194,6 +195,7 @@ EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
FILECMD = @FILECMD@
|
||||
GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@
|
||||
GMSGFMT = @GMSGFMT@
|
||||
GMSGFMT_015 = @GMSGFMT_015@
|
||||
@@ -293,8 +295,10 @@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@
|
||||
am__include = @am__include@
|
||||
am__leading_dot = @am__leading_dot@
|
||||
am__quote = @am__quote@
|
||||
am__rm_f_notfound = @am__rm_f_notfound@
|
||||
am__tar = @am__tar@
|
||||
am__untar = @am__untar@
|
||||
am__xargs_n = @am__xargs_n@
|
||||
bindir = @bindir@
|
||||
build = @build@
|
||||
build_alias = @build_alias@
|
||||
@@ -518,6 +522,7 @@ ctags CTAGS:
|
||||
|
||||
cscope cscopelist:
|
||||
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
@@ -582,8 +587,8 @@ mostlyclean-generic:
|
||||
clean-generic:
|
||||
|
||||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-$(am__rm_f) $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || $(am__rm_f) $(CONFIG_CLEAN_VPATH_FILES)
|
||||
|
||||
maintainer-clean-generic:
|
||||
@echo "This command is intended for maintainers to use"
|
||||
@@ -678,3 +683,10 @@ uninstall-man: uninstall-man1 uninstall-man5 uninstall-man8
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
||||
# Tell GNU make to disable its built-in pattern rules.
|
||||
%:: %,v
|
||||
%:: RCS/%,v
|
||||
%:: RCS/%
|
||||
%:: s.%
|
||||
%:: SCCS/s.%
|
||||
|
||||
+21
-9
@@ -1,7 +1,7 @@
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.18.1 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2025 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
@@ -69,6 +69,8 @@ am__make_running_with_option = \
|
||||
test $$has_opt = yes
|
||||
am__make_dryrun = (target_option=n; $(am__make_running_with_option))
|
||||
am__make_keepgoing = (target_option=k; $(am__make_running_with_option))
|
||||
am__rm_f = rm -f $(am__rm_f_notfound)
|
||||
am__rm_rf = rm -rf $(am__rm_f_notfound)
|
||||
pkgdatadir = $(datadir)/@PACKAGE@
|
||||
pkgincludedir = $(includedir)/@PACKAGE@
|
||||
pkglibdir = $(libdir)/@PACKAGE@
|
||||
@@ -148,10 +150,9 @@ am__base_list = \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g'
|
||||
am__uninstall_files_from_dir = { \
|
||||
test -z "$$files" \
|
||||
|| { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && rm -f $$files; }; \
|
||||
{ test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && echo $$files | $(am__xargs_n) 40 $(am__rm_f); }; \
|
||||
}
|
||||
man1dir = $(mandir)/man1
|
||||
am__installdirs = "$(DESTDIR)$(man1dir)" "$(DESTDIR)$(man5dir)" \
|
||||
@@ -196,6 +197,7 @@ EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
FILECMD = @FILECMD@
|
||||
GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@
|
||||
GMSGFMT = @GMSGFMT@
|
||||
GMSGFMT_015 = @GMSGFMT_015@
|
||||
@@ -295,8 +297,10 @@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@
|
||||
am__include = @am__include@
|
||||
am__leading_dot = @am__leading_dot@
|
||||
am__quote = @am__quote@
|
||||
am__rm_f_notfound = @am__rm_f_notfound@
|
||||
am__tar = @am__tar@
|
||||
am__untar = @am__untar@
|
||||
am__xargs_n = @am__xargs_n@
|
||||
bindir = @bindir@
|
||||
build = @build@
|
||||
build_alias = @build_alias@
|
||||
@@ -541,6 +545,7 @@ ctags CTAGS:
|
||||
|
||||
cscope cscopelist:
|
||||
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
@@ -603,11 +608,11 @@ install-strip:
|
||||
mostlyclean-generic:
|
||||
|
||||
clean-generic:
|
||||
-test -z "$(CLEANFILES)" || rm -f $(CLEANFILES)
|
||||
-$(am__rm_f) $(CLEANFILES)
|
||||
|
||||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-$(am__rm_f) $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || $(am__rm_f) $(CONFIG_CLEAN_VPATH_FILES)
|
||||
|
||||
maintainer-clean-generic:
|
||||
@echo "This command is intended for maintainers to use"
|
||||
@@ -753,3 +758,10 @@ uninstall-man: uninstall-man1 uninstall-man5 uninstall-man8
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
||||
# Tell GNU make to disable its built-in pattern rules.
|
||||
%:: %,v
|
||||
%:: RCS/%,v
|
||||
%:: RCS/%
|
||||
%:: s.%
|
||||
%:: SCCS/s.%
|
||||
|
||||
+43
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: chfn
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: Danish
|
||||
.\"
|
||||
.TH "CHFN" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "CHFN" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -110,6 +110,46 @@ marks\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCHFN_AUTH\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the
|
||||
\fBchfn\fR
|
||||
program will require authentication before making any changes, unless run by the superuser\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCHFN_RESTRICT\fR (string)
|
||||
.RS 4
|
||||
This parameter specifies which values in the
|
||||
\fIgecos\fR
|
||||
field of the
|
||||
/etc/passwd
|
||||
file may be changed by regular users using the
|
||||
\fBchfn\fR
|
||||
program\&. It can be any combination of letters
|
||||
\fIf\fR,
|
||||
\fIr\fR,
|
||||
\fIw\fR,
|
||||
\fIh\fR, for Full name, Room number, Work phone, and Home phone, respectively\&. For backward compatibility,
|
||||
\fIyes\fR
|
||||
is equivalent to
|
||||
\fIrwh\fR
|
||||
and
|
||||
\fIno\fR
|
||||
is equivalent to
|
||||
\fIfrwh\fR\&. If not specified, only the superuser can make any changes\&. The most restrictive setting is better achieved by not installing
|
||||
\fBchfn\fR
|
||||
SUID\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.SH "FILER"
|
||||
.PP
|
||||
/etc/login\&.defs
|
||||
|
||||
+10
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: newgrp
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: Danish
|
||||
.\"
|
||||
.TH "NEWGRP" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "NEWGRP" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -60,6 +60,13 @@ is considered\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBSYSLOG_SG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsg\fR
|
||||
activity\&.
|
||||
.RE
|
||||
.SH "FILER"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+10
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: sg
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: Danish
|
||||
.\"
|
||||
.TH "SG" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "SG" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -77,6 +77,13 @@ This is the default; for backward compatibility\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBSYSLOG_SG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsg\fR
|
||||
activity\&.
|
||||
.RE
|
||||
.SH "FILER"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: gshadow
|
||||
.\" Author: Nicolas Fran\(,cois <nicolas.francois@centraliens.net>
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: Danish
|
||||
.\"
|
||||
.TH "GSHADOW" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "GSHADOW" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+18
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: groupdel
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: Danish
|
||||
.\"
|
||||
.TH "GROUPDEL" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GROUPDEL" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -81,6 +81,21 @@ Du skal manuelt kontrollere alle filsystemer for at sikre dig, at ingen filer fo
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.SH "FILER"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: logoutd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: Danish
|
||||
.\"
|
||||
.TH "LOGOUTD" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "LOGOUTD" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: nologin
|
||||
.\" Author: Nicolas Fran\(,cois <nicolas.francois@centraliens.net>
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: Danish
|
||||
.\"
|
||||
.TH "NOLOGIN" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "NOLOGIN" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+3
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: vipw
|
||||
.\" Author: Marek Micha\(/lkiewicz
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: Danish
|
||||
.\"
|
||||
.TH "VIPW" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "VIPW" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+21
-9
@@ -1,7 +1,7 @@
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.18.1 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2025 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
@@ -69,6 +69,8 @@ am__make_running_with_option = \
|
||||
test $$has_opt = yes
|
||||
am__make_dryrun = (target_option=n; $(am__make_running_with_option))
|
||||
am__make_keepgoing = (target_option=k; $(am__make_running_with_option))
|
||||
am__rm_f = rm -f $(am__rm_f_notfound)
|
||||
am__rm_rf = rm -rf $(am__rm_f_notfound)
|
||||
pkgdatadir = $(datadir)/@PACKAGE@
|
||||
pkgincludedir = $(includedir)/@PACKAGE@
|
||||
pkglibdir = $(libdir)/@PACKAGE@
|
||||
@@ -149,10 +151,9 @@ am__base_list = \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g'
|
||||
am__uninstall_files_from_dir = { \
|
||||
test -z "$$files" \
|
||||
|| { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && rm -f $$files; }; \
|
||||
{ test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && echo $$files | $(am__xargs_n) 40 $(am__rm_f); }; \
|
||||
}
|
||||
man1dir = $(mandir)/man1
|
||||
am__installdirs = "$(DESTDIR)$(man1dir)" "$(DESTDIR)$(man3dir)" \
|
||||
@@ -198,6 +199,7 @@ EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
FILECMD = @FILECMD@
|
||||
GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@
|
||||
GMSGFMT = @GMSGFMT@
|
||||
GMSGFMT_015 = @GMSGFMT_015@
|
||||
@@ -297,8 +299,10 @@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@
|
||||
am__include = @am__include@
|
||||
am__leading_dot = @am__leading_dot@
|
||||
am__quote = @am__quote@
|
||||
am__rm_f_notfound = @am__rm_f_notfound@
|
||||
am__tar = @am__tar@
|
||||
am__untar = @am__untar@
|
||||
am__xargs_n = @am__xargs_n@
|
||||
bindir = @bindir@
|
||||
build = @build@
|
||||
build_alias = @build_alias@
|
||||
@@ -596,6 +600,7 @@ ctags CTAGS:
|
||||
|
||||
cscope cscopelist:
|
||||
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
@@ -658,11 +663,11 @@ install-strip:
|
||||
mostlyclean-generic:
|
||||
|
||||
clean-generic:
|
||||
-test -z "$(CLEANFILES)" || rm -f $(CLEANFILES)
|
||||
-$(am__rm_f) $(CLEANFILES)
|
||||
|
||||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-$(am__rm_f) $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || $(am__rm_f) $(CONFIG_CLEAN_VPATH_FILES)
|
||||
|
||||
maintainer-clean-generic:
|
||||
@echo "This command is intended for maintainers to use"
|
||||
@@ -809,3 +814,10 @@ uninstall-man: uninstall-man1 uninstall-man3 uninstall-man5 \
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
||||
# Tell GNU make to disable its built-in pattern rules.
|
||||
%:: %,v
|
||||
%:: RCS/%,v
|
||||
%:: RCS/%
|
||||
%:: s.%
|
||||
%:: SCCS/s.%
|
||||
|
||||
+3
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: chage
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "CHAGE" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "CHAGE" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+43
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: chfn
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "CHFN" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "CHFN" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -110,6 +110,46 @@ marks\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCHFN_AUTH\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the
|
||||
\fBchfn\fR
|
||||
program will require authentication before making any changes, unless run by the superuser\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCHFN_RESTRICT\fR (string)
|
||||
.RS 4
|
||||
This parameter specifies which values in the
|
||||
\fIgecos\fR
|
||||
field of the
|
||||
/etc/passwd
|
||||
file may be changed by regular users using the
|
||||
\fBchfn\fR
|
||||
program\&. It can be any combination of letters
|
||||
\fIf\fR,
|
||||
\fIr\fR,
|
||||
\fIw\fR,
|
||||
\fIh\fR, for Full name, Room number, Work phone, and Home phone, respectively\&. For backward compatibility,
|
||||
\fIyes\fR
|
||||
is equivalent to
|
||||
\fIrwh\fR
|
||||
and
|
||||
\fIno\fR
|
||||
is equivalent to
|
||||
\fIfrwh\fR\&. If not specified, only the superuser can make any changes\&. The most restrictive setting is better achieved by not installing
|
||||
\fBchfn\fR
|
||||
SUID\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/login\&.defs
|
||||
|
||||
+19
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: chsh
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "CHSH" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "CHSH" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -88,6 +88,22 @@ is discouraged since accidentally changing to a restricted shell would prevent t
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCHSH_AUTH\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the
|
||||
\fBchsh\fR
|
||||
program will require authentication before making any changes, unless run by the superuser\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: expiry
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "EXPIRY" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "EXPIRY" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+77
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: gpasswd
|
||||
.\" Author: Rafal Maszkowski
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "GPASSWD" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "GPASSWD" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -139,6 +139,80 @@ Thus you cannot change any NIS or LDAP group\&. This must be performed on the co
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+279
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: login
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "LOGIN" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "LOGIN" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -149,6 +149,282 @@ As with any program,
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCONSOLE\fR (string)
|
||||
.RS 4
|
||||
If defined, either full pathname of a file containing device names (one per line) or a ":" delimited list of device names\&. Root logins will be allowed only upon these devices\&.
|
||||
.sp
|
||||
If not defined, root will be allowed on any device\&.
|
||||
.sp
|
||||
The device should be specified without the /dev/ prefix\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCONSOLE_GROUPS\fR (string)
|
||||
.RS 4
|
||||
List of groups to add to the user\*(Aqs supplementary groups set when logging in on the console (as determined by the CONSOLE setting)\&. Default is none\&.
|
||||
|
||||
Use with caution \- it is possible for users to gain permanent access to these groups, even when not logged in on the console\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBDEFAULT_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if login is allowed if we can\*(Aqt cd to the home directory\&. Default is no\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR, the user will login in the root (/) directory if it is not possible to cd to her home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_HZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the HZ environment variable when a user login\&. The value must be preceded by
|
||||
\fIHZ=\fR\&. A common value on Linux is
|
||||
\fIHZ=100\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_PATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when a regular user login\&. The value is a colon separated list of paths (for example
|
||||
\fI/bin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/bin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_SUPATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when the superuser login\&. The value is a colon separated list of paths (for example
|
||||
\fI/sbin:/bin:/usr/sbin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/sbin:/bin:/usr/sbin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_TZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the TZ environment variable when a user login\&. The value can be the name of a timezone preceded by
|
||||
\fITZ=\fR
|
||||
(for example
|
||||
\fITZ=CST6CDT\fR), or the full path to the file containing the timezone specification (for example
|
||||
/etc/tzname)\&.
|
||||
.sp
|
||||
If a full path is specified but the file does not exist or cannot be read, the default is to use
|
||||
\fITZ=CST6CDT\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENVIRON_FILE\fR (string)
|
||||
.RS 4
|
||||
If this file exists and is readable, login environment will be read from it\&. Every line should be in the form name=value\&.
|
||||
.sp
|
||||
Lines starting with a # are treated as comment lines and ignored\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBERASECHAR\fR (number)
|
||||
.RS 4
|
||||
Terminal ERASE character (\fI010\fR
|
||||
= backspace,
|
||||
\fI0177\fR
|
||||
= DEL)\&.
|
||||
.sp
|
||||
The value can be prefixed "0" for an octal value, or "0x" for an hexadecimal value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAIL_DELAY\fR (number)
|
||||
.RS 4
|
||||
Delay in seconds before being allowed another attempt after a login failure\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAILLOG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging and display of
|
||||
/var/log/faillog
|
||||
login failure info\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAKE_SHELL\fR (string)
|
||||
.RS 4
|
||||
If set,
|
||||
\fBlogin\fR
|
||||
will execute this shell instead of the users\*(Aq shell specified in
|
||||
/etc/passwd\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFTMP_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, login failures will be logged in this file in a utmp format\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHUSHLOGIN_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, this file can inhibit all the usual chatter during the login sequence\&. If a full pathname is specified, then hushed mode will be enabled if the user\*(Aqs name or shell are found in the file\&. If not a full pathname, then hushed mode will be enabled if the file exists in the user\*(Aqs home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBISSUE_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, this file will be displayed before each login prompt\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBKILLCHAR\fR (number)
|
||||
.RS 4
|
||||
Terminal KILL character (\fI025\fR
|
||||
= CTRL/U)\&.
|
||||
.sp
|
||||
The value can be prefixed "0" for an octal value, or "0x" for an hexadecimal value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLASTLOG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging and display of /var/log/lastlog login time info\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_RETRIES\fR (number)
|
||||
.RS 4
|
||||
Maximum number of login retries in case of bad password\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_TIMEOUT\fR (number)
|
||||
.RS 4
|
||||
Max time in seconds for login\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOG_OK_LOGINS\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging of successful logins\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOG_UNKFAIL_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable display of unknown usernames when login failures are recorded\&.
|
||||
.sp
|
||||
Note: logging unknown usernames may be a security issue if an user enter her password instead of her login name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_CHECK_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking and display of mailbox status upon login\&.
|
||||
.sp
|
||||
You should disable it if the shell startup files already check for mail ("mailx \-e" or equivalent)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMOTD_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, ":" delimited list of "message of the day" files to be displayed upon login\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBNOLOGINS_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, name of file whose presence will inhibit non\-root logins\&. The contents of this file should be a message indicating why logins are inhibited\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPORTTIME_CHECKS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking of time restrictions specified in
|
||||
/etc/porttime\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBQUOTAS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of resource limits from
|
||||
/etc/limits
|
||||
and ulimit, umask, and niceness from the user\*(Aqs passwd gecos field\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBTTYGROUP\fR (string), \fBTTYPERM\fR (number)
|
||||
.RS 4
|
||||
The terminal permissions: the login tty will be owned by the
|
||||
\fBTTYGROUP\fR
|
||||
group, and the permissions will be set to
|
||||
\fBTTYPERM\fR\&.
|
||||
.sp
|
||||
\fBTTYGROUP\fR
|
||||
can be either the name of a group or a numeric group identifier\&.
|
||||
.sp
|
||||
If TTYGROUP is not defined, then the group ownership of the terminal is set to the user\*(Aqs primary group\&. If TTYPERM is not defined, then the permissions are set to
|
||||
\fI0600\fR\&.
|
||||
.sp
|
||||
If you have a
|
||||
\fBwrite\fR
|
||||
program which is "setgid" to a special group which owns the terminals, define TTYGROUP to the group number and TTYPERM to 0620\&. Otherwise leave TTYGROUP commented out and assign TTYPERM to either 622 or 600\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBTTYTYPE_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, file which maps tty line to TERM environment parameter\&. Each line of the file is in a format something like "vt100 tty01"\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBULIMIT\fR (number)
|
||||
.RS 4
|
||||
Default
|
||||
\fBulimit\fR
|
||||
value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUMASK\fR (number)
|
||||
.RS 4
|
||||
The file mode creation mask is initialized to this value\&. If not specified, the mask will be initialized to 022\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this mask to set the mode of the home directory they create if
|
||||
\fBHOME_MODE\fR
|
||||
is not set\&.
|
||||
.sp
|
||||
It is also used by
|
||||
\fBlogin\fR
|
||||
to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if
|
||||
\fBQUOTAS_ENAB\fR
|
||||
is set) or by the specification of a limit with the
|
||||
\fIK\fR
|
||||
identifier in
|
||||
\fBlimits\fR(5)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/var/run/utmp
|
||||
|
||||
+10
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: newgrp
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "NEWGRP" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "NEWGRP" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -60,6 +60,13 @@ is considered\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBSYSLOG_SG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsg\fR
|
||||
activity\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+104
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: passwd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "PASSWD" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "PASSWD" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -193,6 +193,107 @@ Benutzer k\(:onnen unter Umst\(:anden ihr Passwort nicht \(:andern, wenn auf dem
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBOBSCURE_CHECKS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable additional checks upon password changes\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_ALWAYS_WARN\fR (boolean)
|
||||
.RS 4
|
||||
Warn about weak passwords (but still allow them) if you are root\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_CHANGE_TRIES\fR (number)
|
||||
.RS 4
|
||||
Maximum number of attempts to change password if rejected (too easy)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_LEN\fR (number), \fBPASS_MIN_LEN\fR (number)
|
||||
.RS 4
|
||||
Number of significant characters in the password for crypt()\&.
|
||||
.sp
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is 8 by default\&. Don\*(Aqt change unless your crypt() is better\&.
|
||||
.sp
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is only used for DES\&. It is ignored if an encryption algorithm other than DES is used, either because
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
set to
|
||||
\fIyes\fR
|
||||
or
|
||||
\fBENCRYPT_METHOD\fR
|
||||
set to an algorithm other than
|
||||
\fIDES\fR\&.
|
||||
.sp
|
||||
In addition,
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is only used if
|
||||
\fBOBSCURE_CHECKS_ENAB\fR
|
||||
set to
|
||||
\fIyes\fR\&.
|
||||
.sp
|
||||
Note: This only affects the generation of user passwords\&. Group password lengths are not checked\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+10
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: sg
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "SG" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "SG" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -77,6 +77,13 @@ This is the default; for backward compatibility\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBSYSLOG_SG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsg\fR
|
||||
activity\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+163
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: su
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "SU" "1" "19.01.2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "SU" "1" "01.02.2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -228,6 +228,166 @@ has many compilation options, only some of which may be in use at any particular
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCONSOLE\fR (string)
|
||||
.RS 4
|
||||
If defined, either full pathname of a file containing device names (one per line) or a ":" delimited list of device names\&. Root logins will be allowed only upon these devices\&.
|
||||
.sp
|
||||
If not defined, root will be allowed on any device\&.
|
||||
.sp
|
||||
The device should be specified without the /dev/ prefix\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCONSOLE_GROUPS\fR (string)
|
||||
.RS 4
|
||||
List of groups to add to the user\*(Aqs supplementary groups set when logging in on the console (as determined by the CONSOLE setting)\&. Default is none\&.
|
||||
|
||||
Use with caution \- it is possible for users to gain permanent access to these groups, even when not logged in on the console\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBDEFAULT_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if login is allowed if we can\*(Aqt cd to the home directory\&. Default is no\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR, the user will login in the root (/) directory if it is not possible to cd to her home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_HZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the HZ environment variable when a user login\&. The value must be preceded by
|
||||
\fIHZ=\fR\&. A common value on Linux is
|
||||
\fIHZ=100\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENVIRON_FILE\fR (string)
|
||||
.RS 4
|
||||
If this file exists and is readable, login environment will be read from it\&. Every line should be in the form name=value\&.
|
||||
.sp
|
||||
Lines starting with a # are treated as comment lines and ignored\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_PATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when a regular user login\&. The value is a colon separated list of paths (for example
|
||||
\fI/bin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/bin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_SUPATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when the superuser login\&. The value is a colon separated list of paths (for example
|
||||
\fI/sbin:/bin:/usr/sbin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/sbin:/bin:/usr/sbin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_TZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the TZ environment variable when a user login\&. The value can be the name of a timezone preceded by
|
||||
\fITZ=\fR
|
||||
(for example
|
||||
\fITZ=CST6CDT\fR), or the full path to the file containing the timezone specification (for example
|
||||
/etc/tzname)\&.
|
||||
.sp
|
||||
If a full path is specified but the file does not exist or cannot be read, the default is to use
|
||||
\fITZ=CST6CDT\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_CHECK_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking and display of mailbox status upon login\&.
|
||||
.sp
|
||||
You should disable it if the shell startup files already check for mail ("mailx \-e" or equivalent)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBQUOTAS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of resource limits from
|
||||
/etc/limits
|
||||
and ulimit, umask, and niceness from the user\*(Aqs passwd gecos field\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSULOG_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, all su activity is logged to this file\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSU_NAME\fR (string)
|
||||
.RS 4
|
||||
If defined, the command name to display when running "su \-"\&. For example, if this is defined as "su" then a "ps" will display the command is "\-su"\&. If not defined, then "ps" would display the name of the shell actually being run, e\&.g\&. something like "\-sh"\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSU_WHEEL_ONLY\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the user must be listed as a member of the first gid 0 group in
|
||||
/etc/group
|
||||
(called
|
||||
\fIroot\fR
|
||||
on most Linux systems) to be able to
|
||||
\fBsu\fR
|
||||
to uid 0 accounts\&. If the group doesn\*(Aqt exist or is empty, no one will be able to
|
||||
\fBsu\fR
|
||||
to uid 0\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYSLOG_SU_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsu\fR
|
||||
activity \- in addition to sulog file logging\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: shadow
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: Library Calls
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "SHADOW" "3" "19.01.2026" "shadow\-utils 4\&.19\&.2" "Library Calls"
|
||||
.TH "SHADOW" "3" "01.02.2026" "shadow\-utils 4\&.19\&.3" "Library Calls"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: faillog
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "FAILLOG" "5" "19.01.2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuratio"
|
||||
.TH "FAILLOG" "5" "01.02.2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuratio"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: gshadow
|
||||
.\" Author: Nicolas Fran\(,cois <nicolas.francois@centraliens.net>
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "GSHADOW" "5" "19.01.2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "GSHADOW" "5" "01.02.2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: limits
|
||||
.\" Author: Luca Berra
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "LIMITS" "5" "19.01.2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "LIMITS" "5" "01.02.2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: login.access
|
||||
.\" Author: Marek Micha\(/lkiewicz
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "LOGIN\&.ACCESS" "5" "19.01.2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "LOGIN\&.ACCESS" "5" "01.02.2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+672
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: login.defs
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "LOGIN\&.DEFS" "5" "19.01.2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "LOGIN\&.DEFS" "5" "01.02.2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -48,11 +48,680 @@ value\&. Numbers (both regular and long) may be either decimal values, octal val
|
||||
.PP
|
||||
Folgende Merkmale k\(:onnen konfiguriert werden:
|
||||
.PP
|
||||
\fBCHFN_AUTH\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the
|
||||
\fBchfn\fR
|
||||
program will require authentication before making any changes, unless run by the superuser\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCHFN_RESTRICT\fR (string)
|
||||
.RS 4
|
||||
This parameter specifies which values in the
|
||||
\fIgecos\fR
|
||||
field of the
|
||||
/etc/passwd
|
||||
file may be changed by regular users using the
|
||||
\fBchfn\fR
|
||||
program\&. It can be any combination of letters
|
||||
\fIf\fR,
|
||||
\fIr\fR,
|
||||
\fIw\fR,
|
||||
\fIh\fR, for Full name, Room number, Work phone, and Home phone, respectively\&. For backward compatibility,
|
||||
\fIyes\fR
|
||||
is equivalent to
|
||||
\fIrwh\fR
|
||||
and
|
||||
\fIno\fR
|
||||
is equivalent to
|
||||
\fIfrwh\fR\&. If not specified, only the superuser can make any changes\&. The most restrictive setting is better achieved by not installing
|
||||
\fBchfn\fR
|
||||
SUID\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCHSH_AUTH\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the
|
||||
\fBchsh\fR
|
||||
program will require authentication before making any changes, unless run by the superuser\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCONSOLE\fR (string)
|
||||
.RS 4
|
||||
If defined, either full pathname of a file containing device names (one per line) or a ":" delimited list of device names\&. Root logins will be allowed only upon these devices\&.
|
||||
.sp
|
||||
If not defined, root will be allowed on any device\&.
|
||||
.sp
|
||||
The device should be specified without the /dev/ prefix\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCONSOLE_GROUPS\fR (string)
|
||||
.RS 4
|
||||
List of groups to add to the user\*(Aqs supplementary groups set when logging in on the console (as determined by the CONSOLE setting)\&. Default is none\&.
|
||||
|
||||
Use with caution \- it is possible for users to gain permanent access to these groups, even when not logged in on the console\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCREATE_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if a home directory should be created by default for new users\&.
|
||||
.sp
|
||||
This setting does not apply to system users, and can be overridden on the command line\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBDEFAULT_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if login is allowed if we can\*(Aqt cd to the home directory\&. Default is no\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR, the user will login in the root (/) directory if it is not possible to cd to her home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_HZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the HZ environment variable when a user login\&. The value must be preceded by
|
||||
\fIHZ=\fR\&. A common value on Linux is
|
||||
\fIHZ=100\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_PATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when a regular user login\&. The value is a colon separated list of paths (for example
|
||||
\fI/bin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/bin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_SUPATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when the superuser login\&. The value is a colon separated list of paths (for example
|
||||
\fI/sbin:/bin:/usr/sbin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/sbin:/bin:/usr/sbin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_TZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the TZ environment variable when a user login\&. The value can be the name of a timezone preceded by
|
||||
\fITZ=\fR
|
||||
(for example
|
||||
\fITZ=CST6CDT\fR), or the full path to the file containing the timezone specification (for example
|
||||
/etc/tzname)\&.
|
||||
.sp
|
||||
If a full path is specified but the file does not exist or cannot be read, the default is to use
|
||||
\fITZ=CST6CDT\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENVIRON_FILE\fR (string)
|
||||
.RS 4
|
||||
If this file exists and is readable, login environment will be read from it\&. Every line should be in the form name=value\&.
|
||||
.sp
|
||||
Lines starting with a # are treated as comment lines and ignored\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBERASECHAR\fR (number)
|
||||
.RS 4
|
||||
Terminal ERASE character (\fI010\fR
|
||||
= backspace,
|
||||
\fI0177\fR
|
||||
= DEL)\&.
|
||||
.sp
|
||||
The value can be prefixed "0" for an octal value, or "0x" for an hexadecimal value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAIL_DELAY\fR (number)
|
||||
.RS 4
|
||||
Delay in seconds before being allowed another attempt after a login failure\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAILLOG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging and display of
|
||||
/var/log/faillog
|
||||
login failure info\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAKE_SHELL\fR (string)
|
||||
.RS 4
|
||||
If set,
|
||||
\fBlogin\fR
|
||||
will execute this shell instead of the users\*(Aq shell specified in
|
||||
/etc/passwd\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFTMP_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, login failures will be logged in this file in a utmp format\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBGID_MAX\fR (number), \fBGID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of regular groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBGID_MIN\fR
|
||||
(resp\&.
|
||||
\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHMAC_CRYPTO_ALGO\fR (string)
|
||||
.RS 4
|
||||
Used to select the HMAC cryptography algorithm that the pam_timestamp module is going to use to calculate the keyed\-hash message authentication code\&.
|
||||
.sp
|
||||
Note: check
|
||||
hmac(3)
|
||||
to see the possible algorithms that are available in your system\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHOME_MODE\fR (number)
|
||||
.RS 4
|
||||
The mode for new home directories\&. If not specified, the
|
||||
\fBUMASK\fR
|
||||
is used to create the mode\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this to set the mode of the home directory they create\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHUSHLOGIN_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, this file can inhibit all the usual chatter during the login sequence\&. If a full pathname is specified, then hushed mode will be enabled if the user\*(Aqs name or shell are found in the file\&. If not a full pathname, then hushed mode will be enabled if the file exists in the user\*(Aqs home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBISSUE_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, this file will be displayed before each login prompt\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBKILLCHAR\fR (number)
|
||||
.RS 4
|
||||
Terminal KILL character (\fI025\fR
|
||||
= CTRL/U)\&.
|
||||
.sp
|
||||
The value can be prefixed "0" for an octal value, or "0x" for an hexadecimal value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLASTLOG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging and display of /var/log/lastlog login time info\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLASTLOG_UID_MAX\fR (number)
|
||||
.RS 4
|
||||
Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&.
|
||||
.sp
|
||||
No
|
||||
\fBLASTLOG_UID_MAX\fR
|
||||
option present in the configuration means that there is no user ID limit for writing lastlog entries\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOG_OK_LOGINS\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging of successful logins\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOG_UNKFAIL_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable display of unknown usernames when login failures are recorded\&.
|
||||
.sp
|
||||
Note: logging unknown usernames may be a security issue if an user enter her password instead of her login name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_RETRIES\fR (number)
|
||||
.RS 4
|
||||
Maximum number of login retries in case of bad password\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_TIMEOUT\fR (number)
|
||||
.RS 4
|
||||
Max time in seconds for login\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_CHECK_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking and display of mailbox status upon login\&.
|
||||
.sp
|
||||
You should disable it if the shell startup files already check for mail ("mailx \-e" or equivalent)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMOTD_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, ":" delimited list of "message of the day" files to be displayed upon login\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBNOLOGINS_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, name of file whose presence will inhibit non\-root logins\&. The contents of this file should be a message indicating why logins are inhibited\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBNONEXISTENT\fR (string)
|
||||
.RS 4
|
||||
If a system account intentionally does not have a home directory that exists, this string can be provided in the /etc/passwd entry for the account to indicate this\&. The result is that pwck will not emit a spurious warning for this account\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBOBSCURE_CHECKS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable additional checks upon password changes\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_ALWAYS_WARN\fR (boolean)
|
||||
.RS 4
|
||||
Warn about weak passwords (but still allow them) if you are root\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_CHANGE_TRIES\fR (number)
|
||||
.RS 4
|
||||
Maximum number of attempts to change password if rejected (too easy)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR,
|
||||
\fBPASS_MIN_DAYS\fR
|
||||
and
|
||||
\fBPASS_WARN_AGE\fR
|
||||
are only used at the time of account creation\&. Any changes to these settings won\*(Aqt affect existing accounts\&.
|
||||
.PP
|
||||
\fBPASS_MAX_LEN\fR (number), \fBPASS_MIN_LEN\fR (number)
|
||||
.RS 4
|
||||
Number of significant characters in the password for crypt()\&.
|
||||
.sp
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is 8 by default\&. Don\*(Aqt change unless your crypt() is better\&.
|
||||
.sp
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is only used for DES\&. It is ignored if an encryption algorithm other than DES is used, either because
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
set to
|
||||
\fIyes\fR
|
||||
or
|
||||
\fBENCRYPT_METHOD\fR
|
||||
set to an algorithm other than
|
||||
\fIDES\fR\&.
|
||||
.sp
|
||||
In addition,
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is only used if
|
||||
\fBOBSCURE_CHECKS_ENAB\fR
|
||||
set to
|
||||
\fIyes\fR\&.
|
||||
.sp
|
||||
Note: This only affects the generation of user passwords\&. Group password lengths are not checked\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPORTTIME_CHECKS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking of time restrictions specified in
|
||||
/etc/porttime\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBQUOTAS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of resource limits from
|
||||
/etc/limits
|
||||
and ulimit, umask, and niceness from the user\*(Aqs passwd gecos field\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSULOG_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, all su activity is logged to this file\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSU_NAME\fR (string)
|
||||
.RS 4
|
||||
If defined, the command name to display when running "su \-"\&. For example, if this is defined as "su" then a "ps" will display the command is "\-su"\&. If not defined, then "ps" would display the name of the shell actually being run, e\&.g\&. something like "\-sh"\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSU_WHEEL_ONLY\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the user must be listed as a member of the first gid 0 group in
|
||||
/etc/group
|
||||
(called
|
||||
\fIroot\fR
|
||||
on most Linux systems) to be able to
|
||||
\fBsu\fR
|
||||
to uid 0 accounts\&. If the group doesn\*(Aqt exist or is empty, no one will be able to
|
||||
\fBsu\fR
|
||||
to uid 0\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate group IDs) allocate
|
||||
\fBSUB_GID_COUNT\fR
|
||||
unused group IDs from the range
|
||||
\fBSUB_GID_MIN\fR
|
||||
to
|
||||
\fBSUB_GID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_GID_MIN\fR,
|
||||
\fBSUB_GID_MAX\fR,
|
||||
\fBSUB_GID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate user IDs) allocate
|
||||
\fBSUB_UID_COUNT\fR
|
||||
unused user IDs from the range
|
||||
\fBSUB_UID_MIN\fR
|
||||
to
|
||||
\fBSUB_UID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_UID_MIN\fR,
|
||||
\fBSUB_UID_MAX\fR,
|
||||
\fBSUB_UID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of system groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_GID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_GID_MAX\fR) is 101 (resp\&.
|
||||
\fBGID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_UID_MAX\fR (number), \fBSYS_UID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of system users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_UID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_UID_MAX\fR) is 101 (resp\&.
|
||||
\fBUID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYSLOG_SG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsg\fR
|
||||
activity\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYSLOG_SU_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsu\fR
|
||||
activity \- in addition to sulog file logging\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBTTYGROUP\fR (string), \fBTTYPERM\fR (number)
|
||||
.RS 4
|
||||
The terminal permissions: the login tty will be owned by the
|
||||
\fBTTYGROUP\fR
|
||||
group, and the permissions will be set to
|
||||
\fBTTYPERM\fR\&.
|
||||
.sp
|
||||
\fBTTYGROUP\fR
|
||||
can be either the name of a group or a numeric group identifier\&.
|
||||
.sp
|
||||
If TTYGROUP is not defined, then the group ownership of the terminal is set to the user\*(Aqs primary group\&. If TTYPERM is not defined, then the permissions are set to
|
||||
\fI0600\fR\&.
|
||||
.sp
|
||||
If you have a
|
||||
\fBwrite\fR
|
||||
program which is "setgid" to a special group which owns the terminals, define TTYGROUP to the group number and TTYPERM to 0620\&. Otherwise leave TTYGROUP commented out and assign TTYPERM to either 622 or 600\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBTTYTYPE_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, file which maps tty line to TERM environment parameter\&. Each line of the file is in a format something like "vt100 tty01"\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUID_MAX\fR (number), \fBUID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of regular users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBUID_MIN\fR
|
||||
(resp\&.
|
||||
\fBUID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBULIMIT\fR (number)
|
||||
.RS 4
|
||||
Default
|
||||
\fBulimit\fR
|
||||
value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUMASK\fR (number)
|
||||
.RS 4
|
||||
The file mode creation mask is initialized to this value\&. If not specified, the mask will be initialized to 022\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this mask to set the mode of the home directory they create if
|
||||
\fBHOME_MODE\fR
|
||||
is not set\&.
|
||||
.sp
|
||||
It is also used by
|
||||
\fBlogin\fR
|
||||
to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if
|
||||
\fBQUOTAS_ENAB\fR
|
||||
is set) or by the specification of a limit with the
|
||||
\fIK\fR
|
||||
identifier in
|
||||
\fBlimits\fR(5)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERDEL_CMD\fR (string)
|
||||
.RS 4
|
||||
If defined, this command is run when removing a user\&. It should remove any at/cron/print jobs etc\&. owned by the user to be removed (passed as the first argument)\&.
|
||||
.sp
|
||||
The return code of the script is not taken into account\&.
|
||||
.sp
|
||||
Here is an example script, which removes the user\*(Aqs cron, at and print jobs:
|
||||
.sp
|
||||
.if n \{\
|
||||
.RS 4
|
||||
.\}
|
||||
.nf
|
||||
#! /bin/sh
|
||||
|
||||
# Check for the required argument\&.
|
||||
if [ $# != 1 ]; then
|
||||
echo "Usage: $0 username"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
# Remove cron jobs\&.
|
||||
crontab \-r \-u $1
|
||||
|
||||
# Remove at jobs\&.
|
||||
# Note that it will remove any jobs owned by the same UID,
|
||||
# even if it was shared by a different username\&.
|
||||
AT_SPOOL_DIR=/var/spool/cron/atjobs
|
||||
find $AT_SPOOL_DIR \-name "[^\&.]*" \-type f \-user $1 \-delete \e;
|
||||
|
||||
# Remove print jobs\&.
|
||||
lprm $1
|
||||
|
||||
# All done\&.
|
||||
exit 0
|
||||
|
||||
.fi
|
||||
.if n \{\
|
||||
.RE
|
||||
.\}
|
||||
.sp
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "QUERVERWEISE"
|
||||
.PP
|
||||
Die folgenden Querverweise zeigen, welche Programme aus der Shadow\-Passwort\-Sammlung welche Parameter verwenden\&.
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: passwd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "PASSWD" "5" "19.01.2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "PASSWD" "5" "01.02.2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: porttime
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "PORTTIME" "5" "19.01.2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "PORTTIME" "5" "01.02.2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: shadow
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "SHADOW" "5" "19.01.2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "SHADOW" "5" "01.02.2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: suauth
|
||||
.\" Author: Marek Micha\(/lkiewicz
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "SUAUTH" "5" "19.01.2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "SUAUTH" "5" "01.02.2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+77
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: chgpasswd
|
||||
.\" Author: Thomas K\(/loczko <kloczek@pld.org.pl>
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "CHGPASSWD" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "CHGPASSWD" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -119,6 +119,80 @@ Sie sollten darauf achten, dass Passw\(:orter und Verschl\(:usselungsmethode in
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+62
-4
@@ -2,12 +2,12 @@
|
||||
.\" Title: chpasswd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "CHPASSWD" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "CHPASSWD" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -139,7 +139,65 @@ ausschlie\(ssen, dass andere Benutzer sie lesen k\(:onnen\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: faillog
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "FAILLOG" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "FAILLOG" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+45
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: groupadd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "GROUPADD" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GROUPADD" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -162,6 +162,48 @@ variable in
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBGID_MAX\fR (number), \fBGID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of regular groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBGID_MIN\fR
|
||||
(resp\&.
|
||||
\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of system groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_GID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_GID_MAX\fR) is 101 (resp\&.
|
||||
\fBGID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+18
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: groupdel
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "GROUPDEL" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GROUPDEL" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -81,6 +81,21 @@ Sie sollten von Hand alle Dateisysteme \(:uberpr\(:ufen, um sicherzustellen, das
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+18
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: groupmems
|
||||
.\" Author: George Kraft, IV
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "GROUPMEMS" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GROUPMEMS" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -142,6 +142,21 @@ utility to manage their own group membership list\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+18
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: groupmod
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "GROUPMOD" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GROUPMOD" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -147,6 +147,21 @@ variable in
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+18
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: grpck
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "GRPCK" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GRPCK" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -179,6 +179,21 @@ and \fIshadow\fR parameters\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+12
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: lastlog
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "LASTLOG" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "LASTLOG" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -122,6 +122,15 @@ users with a high UID)\&. You can display its real size with "\fBls \-s\fR"\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBLASTLOG_UID_MAX\fR (number)
|
||||
.RS 4
|
||||
Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&.
|
||||
.sp
|
||||
No
|
||||
\fBLASTLOG_UID_MAX\fR
|
||||
option present in the configuration means that there is no user ID limit for writing lastlog entries\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/var/log/lastlog
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: logoutd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "LOGOUTD" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "LOGOUTD" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+225
-8
@@ -2,12 +2,12 @@
|
||||
.\" Title: newusers
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "NEWUSERS" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "NEWUSERS" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -186,11 +186,228 @@ Sie sollten darauf achten, dass Passw\(:orter und Verschl\(:usselungsmethode in
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBGID_MAX\fR (number), \fBGID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of regular groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBGID_MIN\fR
|
||||
(resp\&.
|
||||
\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHOME_MODE\fR (number)
|
||||
.RS 4
|
||||
The mode for new home directories\&. If not specified, the
|
||||
\fBUMASK\fR
|
||||
is used to create the mode\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this to set the mode of the home directory they create\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate group IDs) allocate
|
||||
\fBSUB_GID_COUNT\fR
|
||||
unused group IDs from the range
|
||||
\fBSUB_GID_MIN\fR
|
||||
to
|
||||
\fBSUB_GID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_GID_MIN\fR,
|
||||
\fBSUB_GID_MAX\fR,
|
||||
\fBSUB_GID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate user IDs) allocate
|
||||
\fBSUB_UID_COUNT\fR
|
||||
unused user IDs from the range
|
||||
\fBSUB_UID_MIN\fR
|
||||
to
|
||||
\fBSUB_UID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_UID_MIN\fR,
|
||||
\fBSUB_UID_MAX\fR,
|
||||
\fBSUB_UID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of system groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_GID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_GID_MAX\fR) is 101 (resp\&.
|
||||
\fBGID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_UID_MAX\fR (number), \fBSYS_UID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of system users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_UID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_UID_MAX\fR) is 101 (resp\&.
|
||||
\fBUID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUID_MAX\fR (number), \fBUID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of regular users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBUID_MIN\fR
|
||||
(resp\&.
|
||||
\fBUID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUMASK\fR (number)
|
||||
.RS 4
|
||||
The file mode creation mask is initialized to this value\&. If not specified, the mask will be initialized to 022\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this mask to set the mode of the home directory they create if
|
||||
\fBHOME_MODE\fR
|
||||
is not set\&.
|
||||
.sp
|
||||
It is also used by
|
||||
\fBlogin\fR
|
||||
to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if
|
||||
\fBQUOTAS_ENAB\fR
|
||||
is set) or by the specification of a limit with the
|
||||
\fIK\fR
|
||||
identifier in
|
||||
\fBlimits\fR(5)\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: nologin
|
||||
.\" Author: Nicolas Fran\(,cois <nicolas.francois@centraliens.net>
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "NOLOGIN" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "NOLOGIN" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+23
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: pwck
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "PWCK" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "PWCK" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -253,6 +253,26 @@ parameters\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBNONEXISTENT\fR (string)
|
||||
.RS 4
|
||||
If a system account intentionally does not have a home directory that exists, this string can be provided in the /etc/passwd entry for the account to indicate this\&. The result is that pwck will not emit a spurious warning for this account\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+33
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: pwconv
|
||||
.\" Author: Marek Micha\(/lkiewicz
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "PWCONV" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "PWCONV" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -146,10 +146,40 @@ changes the behavior of
|
||||
and
|
||||
\fBgrpunconv\fR:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of
|
||||
\fBpwconv\fR:
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/login\&.defs
|
||||
|
||||
+22
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: sulogin
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "SULOGIN" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "SULOGIN" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -79,6 +79,25 @@ As complete an environment as possible is created\&. However, various devices ma
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBENV_HZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the HZ environment variable when a user login\&. The value must be preceded by
|
||||
\fIHZ=\fR\&. A common value on Linux is
|
||||
\fIHZ=100\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_TZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the TZ environment variable when a user login\&. The value can be the name of a timezone preceded by
|
||||
\fITZ=\fR
|
||||
(for example
|
||||
\fITZ=CST6CDT\fR), or the full path to the file containing the timezone specification (for example
|
||||
/etc/tzname)\&.
|
||||
.sp
|
||||
If a full path is specified but the file does not exist or cannot be read, the default is to use
|
||||
\fITZ=CST6CDT\fR\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+223
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: useradd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "USERADD" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "USERADD" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -507,6 +507,226 @@ Benutzernamen d\(:urfen nur bis zu 256 Zeichen lang sein\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCREATE_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if a home directory should be created by default for new users\&.
|
||||
.sp
|
||||
This setting does not apply to system users, and can be overridden on the command line\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBGID_MAX\fR (number), \fBGID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of regular groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBGID_MIN\fR
|
||||
(resp\&.
|
||||
\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHOME_MODE\fR (number)
|
||||
.RS 4
|
||||
The mode for new home directories\&. If not specified, the
|
||||
\fBUMASK\fR
|
||||
is used to create the mode\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this to set the mode of the home directory they create\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLASTLOG_UID_MAX\fR (number)
|
||||
.RS 4
|
||||
Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&.
|
||||
.sp
|
||||
No
|
||||
\fBLASTLOG_UID_MAX\fR
|
||||
option present in the configuration means that there is no user ID limit for writing lastlog entries\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate group IDs) allocate
|
||||
\fBSUB_GID_COUNT\fR
|
||||
unused group IDs from the range
|
||||
\fBSUB_GID_MIN\fR
|
||||
to
|
||||
\fBSUB_GID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_GID_MIN\fR,
|
||||
\fBSUB_GID_MAX\fR,
|
||||
\fBSUB_GID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate user IDs) allocate
|
||||
\fBSUB_UID_COUNT\fR
|
||||
unused user IDs from the range
|
||||
\fBSUB_UID_MIN\fR
|
||||
to
|
||||
\fBSUB_UID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_UID_MIN\fR,
|
||||
\fBSUB_UID_MAX\fR,
|
||||
\fBSUB_UID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of system groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_GID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_GID_MAX\fR) is 101 (resp\&.
|
||||
\fBGID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_UID_MAX\fR (number), \fBSYS_UID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of system users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_UID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_UID_MAX\fR) is 101 (resp\&.
|
||||
\fBUID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUID_MAX\fR (number), \fBUID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of regular users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBUID_MIN\fR
|
||||
(resp\&.
|
||||
\fBUID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUMASK\fR (number)
|
||||
.RS 4
|
||||
The file mode creation mask is initialized to this value\&. If not specified, the mask will be initialized to 022\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this mask to set the mode of the home directory they create if
|
||||
\fBHOME_MODE\fR
|
||||
is not set\&.
|
||||
.sp
|
||||
It is also used by
|
||||
\fBlogin\fR
|
||||
to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if
|
||||
\fBQUOTAS_ENAB\fR
|
||||
is set) or by the specification of a limit with the
|
||||
\fIK\fR
|
||||
identifier in
|
||||
\fBlimits\fR(5)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+101
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: userdel
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "USERDEL" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "USERDEL" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -95,6 +95,104 @@ entfernt jegliche Zuordnung zu SELinux\-Benutzern f\(:ur das Benutzerkonto\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERDEL_CMD\fR (string)
|
||||
.RS 4
|
||||
If defined, this command is run when removing a user\&. It should remove any at/cron/print jobs etc\&. owned by the user to be removed (passed as the first argument)\&.
|
||||
.sp
|
||||
The return code of the script is not taken into account\&.
|
||||
.sp
|
||||
Here is an example script, which removes the user\*(Aqs cron, at and print jobs:
|
||||
.sp
|
||||
.if n \{\
|
||||
.RS 4
|
||||
.\}
|
||||
.nf
|
||||
#! /bin/sh
|
||||
|
||||
# Check for the required argument\&.
|
||||
if [ $# != 1 ]; then
|
||||
echo "Usage: $0 username"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
# Remove cron jobs\&.
|
||||
crontab \-r \-u $1
|
||||
|
||||
# Remove at jobs\&.
|
||||
# Note that it will remove any jobs owned by the same UID,
|
||||
# even if it was shared by a different username\&.
|
||||
AT_SPOOL_DIR=/var/spool/cron/atjobs
|
||||
find $AT_SPOOL_DIR \-name "[^\&.]*" \-type f \-user $1 \-delete \e;
|
||||
|
||||
# Remove print jobs\&.
|
||||
lprm $1
|
||||
|
||||
# All done\&.
|
||||
exit 0
|
||||
|
||||
.fi
|
||||
.if n \{\
|
||||
.RE
|
||||
.\}
|
||||
.sp
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+102
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: usermod
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "USERMOD" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "USERMOD" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -340,6 +340,105 @@ Sie m\(:ussen alle \(:Anderungen, an welchen NIS beteiligt ist, auf dem NIS\-Ser
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBLASTLOG_UID_MAX\fR (number)
|
||||
.RS 4
|
||||
Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&.
|
||||
.sp
|
||||
No
|
||||
\fBLASTLOG_UID_MAX\fR
|
||||
option present in the configuration means that there is no user ID limit for writing lastlog entries\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate group IDs) allocate
|
||||
\fBSUB_GID_COUNT\fR
|
||||
unused group IDs from the range
|
||||
\fBSUB_GID_MIN\fR
|
||||
to
|
||||
\fBSUB_GID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_GID_MIN\fR,
|
||||
\fBSUB_GID_MAX\fR,
|
||||
\fBSUB_GID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate user IDs) allocate
|
||||
\fBSUB_UID_COUNT\fR
|
||||
unused user IDs from the range
|
||||
\fBSUB_UID_MIN\fR
|
||||
to
|
||||
\fBSUB_UID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_UID_MIN\fR,
|
||||
\fBSUB_UID_MAX\fR,
|
||||
\fBSUB_UID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.SH "DATEIEN"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+3
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: vipw
|
||||
.\" Author: Marek Micha\(/lkiewicz
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19.01.2026
|
||||
.\" Date: 01.02.2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: German
|
||||
.\"
|
||||
.TH "VIPW" "8" "19.01.2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "VIPW" "8" "01.02.2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+17
-4
@@ -1,7 +1,7 @@
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.18.1 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2025 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
@@ -69,6 +69,8 @@ am__make_running_with_option = \
|
||||
test $$has_opt = yes
|
||||
am__make_dryrun = (target_option=n; $(am__make_running_with_option))
|
||||
am__make_keepgoing = (target_option=k; $(am__make_running_with_option))
|
||||
am__rm_f = rm -f $(am__rm_f_notfound)
|
||||
am__rm_rf = rm -rf $(am__rm_f_notfound)
|
||||
pkgdatadir = $(datadir)/@PACKAGE@
|
||||
pkgincludedir = $(includedir)/@PACKAGE@
|
||||
pkglibdir = $(libdir)/@PACKAGE@
|
||||
@@ -159,6 +161,7 @@ EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
FILECMD = @FILECMD@
|
||||
GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@
|
||||
GMSGFMT = @GMSGFMT@
|
||||
GMSGFMT_015 = @GMSGFMT_015@
|
||||
@@ -258,8 +261,10 @@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@
|
||||
am__include = @am__include@
|
||||
am__leading_dot = @am__leading_dot@
|
||||
am__quote = @am__quote@
|
||||
am__rm_f_notfound = @am__rm_f_notfound@
|
||||
am__tar = @am__tar@
|
||||
am__untar = @am__untar@
|
||||
am__xargs_n = @am__xargs_n@
|
||||
bindir = @bindir@
|
||||
build = @build@
|
||||
build_alias = @build_alias@
|
||||
@@ -359,6 +364,7 @@ ctags CTAGS:
|
||||
|
||||
cscope cscopelist:
|
||||
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
@@ -420,8 +426,8 @@ mostlyclean-generic:
|
||||
clean-generic:
|
||||
|
||||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-$(am__rm_f) $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || $(am__rm_f) $(CONFIG_CLEAN_VPATH_FILES)
|
||||
|
||||
maintainer-clean-generic:
|
||||
@echo "This command is intended for maintainers to use"
|
||||
@@ -512,3 +518,10 @@ uninstall-am:
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
||||
# Tell GNU make to disable its built-in pattern rules.
|
||||
%:: %,v
|
||||
%:: RCS/%,v
|
||||
%:: RCS/%
|
||||
%:: s.%
|
||||
%:: SCCS/s.%
|
||||
|
||||
+20
-8
@@ -1,7 +1,7 @@
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.18.1 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2025 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
@@ -69,6 +69,8 @@ am__make_running_with_option = \
|
||||
test $$has_opt = yes
|
||||
am__make_dryrun = (target_option=n; $(am__make_running_with_option))
|
||||
am__make_keepgoing = (target_option=k; $(am__make_running_with_option))
|
||||
am__rm_f = rm -f $(am__rm_f_notfound)
|
||||
am__rm_rf = rm -rf $(am__rm_f_notfound)
|
||||
pkgdatadir = $(datadir)/@PACKAGE@
|
||||
pkgincludedir = $(includedir)/@PACKAGE@
|
||||
pkglibdir = $(libdir)/@PACKAGE@
|
||||
@@ -146,10 +148,9 @@ am__base_list = \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g'
|
||||
am__uninstall_files_from_dir = { \
|
||||
test -z "$$files" \
|
||||
|| { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && rm -f $$files; }; \
|
||||
{ test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && echo $$files | $(am__xargs_n) 40 $(am__rm_f); }; \
|
||||
}
|
||||
man1dir = $(mandir)/man1
|
||||
am__installdirs = "$(DESTDIR)$(man1dir)"
|
||||
@@ -190,6 +191,7 @@ EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
FILECMD = @FILECMD@
|
||||
GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@
|
||||
GMSGFMT = @GMSGFMT@
|
||||
GMSGFMT_015 = @GMSGFMT_015@
|
||||
@@ -289,8 +291,10 @@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@
|
||||
am__include = @am__include@
|
||||
am__leading_dot = @am__leading_dot@
|
||||
am__quote = @am__quote@
|
||||
am__rm_f_notfound = @am__rm_f_notfound@
|
||||
am__tar = @am__tar@
|
||||
am__untar = @am__untar@
|
||||
am__xargs_n = @am__xargs_n@
|
||||
bindir = @bindir@
|
||||
build = @build@
|
||||
build_alias = @build_alias@
|
||||
@@ -429,6 +433,7 @@ ctags CTAGS:
|
||||
|
||||
cscope cscopelist:
|
||||
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
@@ -493,8 +498,8 @@ mostlyclean-generic:
|
||||
clean-generic:
|
||||
|
||||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-$(am__rm_f) $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || $(am__rm_f) $(CONFIG_CLEAN_VPATH_FILES)
|
||||
|
||||
maintainer-clean-generic:
|
||||
@echo "This command is intended for maintainers to use"
|
||||
@@ -588,3 +593,10 @@ uninstall-man: uninstall-man1
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
||||
# Tell GNU make to disable its built-in pattern rules.
|
||||
%:: %,v
|
||||
%:: RCS/%,v
|
||||
%:: RCS/%
|
||||
%:: s.%
|
||||
%:: SCCS/s.%
|
||||
|
||||
+21
-9
@@ -1,7 +1,7 @@
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.18.1 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2025 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
@@ -69,6 +69,8 @@ am__make_running_with_option = \
|
||||
test $$has_opt = yes
|
||||
am__make_dryrun = (target_option=n; $(am__make_running_with_option))
|
||||
am__make_keepgoing = (target_option=k; $(am__make_running_with_option))
|
||||
am__rm_f = rm -f $(am__rm_f_notfound)
|
||||
am__rm_rf = rm -rf $(am__rm_f_notfound)
|
||||
pkgdatadir = $(datadir)/@PACKAGE@
|
||||
pkgincludedir = $(includedir)/@PACKAGE@
|
||||
pkglibdir = $(libdir)/@PACKAGE@
|
||||
@@ -151,10 +153,9 @@ am__base_list = \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g'
|
||||
am__uninstall_files_from_dir = { \
|
||||
test -z "$$files" \
|
||||
|| { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && rm -f $$files; }; \
|
||||
{ test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && echo $$files | $(am__xargs_n) 40 $(am__rm_f); }; \
|
||||
}
|
||||
man1dir = $(mandir)/man1
|
||||
am__installdirs = "$(DESTDIR)$(man1dir)" "$(DESTDIR)$(man3dir)" \
|
||||
@@ -200,6 +201,7 @@ EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
FILECMD = @FILECMD@
|
||||
GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@
|
||||
GMSGFMT = @GMSGFMT@
|
||||
GMSGFMT_015 = @GMSGFMT_015@
|
||||
@@ -299,8 +301,10 @@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@
|
||||
am__include = @am__include@
|
||||
am__leading_dot = @am__leading_dot@
|
||||
am__quote = @am__quote@
|
||||
am__rm_f_notfound = @am__rm_f_notfound@
|
||||
am__tar = @am__tar@
|
||||
am__untar = @am__untar@
|
||||
am__xargs_n = @am__xargs_n@
|
||||
bindir = @bindir@
|
||||
build = @build@
|
||||
build_alias = @build_alias@
|
||||
@@ -605,6 +609,7 @@ ctags CTAGS:
|
||||
|
||||
cscope cscopelist:
|
||||
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
@@ -667,11 +672,11 @@ install-strip:
|
||||
mostlyclean-generic:
|
||||
|
||||
clean-generic:
|
||||
-test -z "$(CLEANFILES)" || rm -f $(CLEANFILES)
|
||||
-$(am__rm_f) $(CLEANFILES)
|
||||
|
||||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-$(am__rm_f) $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || $(am__rm_f) $(CONFIG_CLEAN_VPATH_FILES)
|
||||
|
||||
maintainer-clean-generic:
|
||||
@echo "This command is intended for maintainers to use"
|
||||
@@ -818,3 +823,10 @@ uninstall-man: uninstall-man1 uninstall-man3 uninstall-man5 \
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
||||
# Tell GNU make to disable its built-in pattern rules.
|
||||
%:: %,v
|
||||
%:: RCS/%,v
|
||||
%:: RCS/%
|
||||
%:: s.%
|
||||
%:: SCCS/s.%
|
||||
|
||||
+3
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: chage
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "CHAGE" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "CHAGE" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+43
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: chfn
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "CHFN" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "CHFN" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -110,6 +110,46 @@ marks\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCHFN_AUTH\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the
|
||||
\fBchfn\fR
|
||||
program will require authentication before making any changes, unless run by the superuser\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCHFN_RESTRICT\fR (string)
|
||||
.RS 4
|
||||
This parameter specifies which values in the
|
||||
\fIgecos\fR
|
||||
field of the
|
||||
/etc/passwd
|
||||
file may be changed by regular users using the
|
||||
\fBchfn\fR
|
||||
program\&. It can be any combination of letters
|
||||
\fIf\fR,
|
||||
\fIr\fR,
|
||||
\fIw\fR,
|
||||
\fIh\fR, for Full name, Room number, Work phone, and Home phone, respectively\&. For backward compatibility,
|
||||
\fIyes\fR
|
||||
is equivalent to
|
||||
\fIrwh\fR
|
||||
and
|
||||
\fIno\fR
|
||||
is equivalent to
|
||||
\fIfrwh\fR\&. If not specified, only the superuser can make any changes\&. The most restrictive setting is better achieved by not installing
|
||||
\fBchfn\fR
|
||||
SUID\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/login\&.defs
|
||||
|
||||
+19
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: chsh
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "CHSH" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "CHSH" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -84,6 +84,22 @@ is discouraged since accidentally changing to a restricted shell would prevent t
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCHSH_AUTH\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the
|
||||
\fBchsh\fR
|
||||
program will require authentication before making any changes, unless run by the superuser\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: expiry
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "EXPIRY" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "EXPIRY" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+77
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: gpasswd
|
||||
.\" Author: rafal Maszkowski
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "GPASSWD" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "GPASSWD" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -139,6 +139,80 @@ Thus you cannot change any NIS or LDAP group\&. This must be performed on the co
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+279
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: login
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "LOGIN" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "LOGIN" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -149,6 +149,282 @@ As with any program,
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCONSOLE\fR (string)
|
||||
.RS 4
|
||||
If defined, either full pathname of a file containing device names (one per line) or a ":" delimited list of device names\&. Root logins will be allowed only upon these devices\&.
|
||||
.sp
|
||||
If not defined, root will be allowed on any device\&.
|
||||
.sp
|
||||
The device should be specified without the /dev/ prefix\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCONSOLE_GROUPS\fR (string)
|
||||
.RS 4
|
||||
List of groups to add to the user\*(Aqs supplementary groups set when logging in on the console (as determined by the CONSOLE setting)\&. Default is none\&.
|
||||
|
||||
Use with caution \- it is possible for users to gain permanent access to these groups, even when not logged in on the console\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBDEFAULT_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if login is allowed if we can\*(Aqt cd to the home directory\&. Default is no\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR, the user will login in the root (/) directory if it is not possible to cd to her home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_HZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the HZ environment variable when a user login\&. The value must be preceded by
|
||||
\fIHZ=\fR\&. A common value on Linux is
|
||||
\fIHZ=100\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_PATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when a regular user login\&. The value is a colon separated list of paths (for example
|
||||
\fI/bin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/bin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_SUPATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when the superuser login\&. The value is a colon separated list of paths (for example
|
||||
\fI/sbin:/bin:/usr/sbin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/sbin:/bin:/usr/sbin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_TZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the TZ environment variable when a user login\&. The value can be the name of a timezone preceded by
|
||||
\fITZ=\fR
|
||||
(for example
|
||||
\fITZ=CST6CDT\fR), or the full path to the file containing the timezone specification (for example
|
||||
/etc/tzname)\&.
|
||||
.sp
|
||||
If a full path is specified but the file does not exist or cannot be read, the default is to use
|
||||
\fITZ=CST6CDT\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENVIRON_FILE\fR (string)
|
||||
.RS 4
|
||||
If this file exists and is readable, login environment will be read from it\&. Every line should be in the form name=value\&.
|
||||
.sp
|
||||
Lines starting with a # are treated as comment lines and ignored\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBERASECHAR\fR (number)
|
||||
.RS 4
|
||||
Terminal ERASE character (\fI010\fR
|
||||
= backspace,
|
||||
\fI0177\fR
|
||||
= DEL)\&.
|
||||
.sp
|
||||
The value can be prefixed "0" for an octal value, or "0x" for an hexadecimal value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAIL_DELAY\fR (number)
|
||||
.RS 4
|
||||
Delay in seconds before being allowed another attempt after a login failure\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAILLOG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging and display of
|
||||
/var/log/faillog
|
||||
login failure info\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAKE_SHELL\fR (string)
|
||||
.RS 4
|
||||
If set,
|
||||
\fBlogin\fR
|
||||
will execute this shell instead of the users\*(Aq shell specified in
|
||||
/etc/passwd\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFTMP_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, login failures will be logged in this file in a utmp format\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHUSHLOGIN_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, this file can inhibit all the usual chatter during the login sequence\&. If a full pathname is specified, then hushed mode will be enabled if the user\*(Aqs name or shell are found in the file\&. If not a full pathname, then hushed mode will be enabled if the file exists in the user\*(Aqs home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBISSUE_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, this file will be displayed before each login prompt\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBKILLCHAR\fR (number)
|
||||
.RS 4
|
||||
Terminal KILL character (\fI025\fR
|
||||
= CTRL/U)\&.
|
||||
.sp
|
||||
The value can be prefixed "0" for an octal value, or "0x" for an hexadecimal value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLASTLOG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging and display of /var/log/lastlog login time info\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_RETRIES\fR (number)
|
||||
.RS 4
|
||||
Maximum number of login retries in case of bad password\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_TIMEOUT\fR (number)
|
||||
.RS 4
|
||||
Max time in seconds for login\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOG_OK_LOGINS\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging of successful logins\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOG_UNKFAIL_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable display of unknown usernames when login failures are recorded\&.
|
||||
.sp
|
||||
Note: logging unknown usernames may be a security issue if an user enter her password instead of her login name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_CHECK_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking and display of mailbox status upon login\&.
|
||||
.sp
|
||||
You should disable it if the shell startup files already check for mail ("mailx \-e" or equivalent)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMOTD_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, ":" delimited list of "message of the day" files to be displayed upon login\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBNOLOGINS_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, name of file whose presence will inhibit non\-root logins\&. The contents of this file should be a message indicating why logins are inhibited\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPORTTIME_CHECKS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking of time restrictions specified in
|
||||
/etc/porttime\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBQUOTAS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of resource limits from
|
||||
/etc/limits
|
||||
and ulimit, umask, and niceness from the user\*(Aqs passwd gecos field\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBTTYGROUP\fR (string), \fBTTYPERM\fR (number)
|
||||
.RS 4
|
||||
The terminal permissions: the login tty will be owned by the
|
||||
\fBTTYGROUP\fR
|
||||
group, and the permissions will be set to
|
||||
\fBTTYPERM\fR\&.
|
||||
.sp
|
||||
\fBTTYGROUP\fR
|
||||
can be either the name of a group or a numeric group identifier\&.
|
||||
.sp
|
||||
If TTYGROUP is not defined, then the group ownership of the terminal is set to the user\*(Aqs primary group\&. If TTYPERM is not defined, then the permissions are set to
|
||||
\fI0600\fR\&.
|
||||
.sp
|
||||
If you have a
|
||||
\fBwrite\fR
|
||||
program which is "setgid" to a special group which owns the terminals, define TTYGROUP to the group number and TTYPERM to 0620\&. Otherwise leave TTYGROUP commented out and assign TTYPERM to either 622 or 600\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBTTYTYPE_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, file which maps tty line to TERM environment parameter\&. Each line of the file is in a format something like "vt100 tty01"\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBULIMIT\fR (number)
|
||||
.RS 4
|
||||
Default
|
||||
\fBulimit\fR
|
||||
value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUMASK\fR (number)
|
||||
.RS 4
|
||||
The file mode creation mask is initialized to this value\&. If not specified, the mask will be initialized to 022\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this mask to set the mode of the home directory they create if
|
||||
\fBHOME_MODE\fR
|
||||
is not set\&.
|
||||
.sp
|
||||
It is also used by
|
||||
\fBlogin\fR
|
||||
to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if
|
||||
\fBQUOTAS_ENAB\fR
|
||||
is set) or by the specification of a limit with the
|
||||
\fIK\fR
|
||||
identifier in
|
||||
\fBlimits\fR(5)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/var/run/utmp
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: newgidmap
|
||||
.\" Author: Eric Biederman
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "NEWGIDMAP" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "NEWGIDMAP" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+10
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: newgrp
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "NEWGRP" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "NEWGRP" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -60,6 +60,13 @@ is considered\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBSYSLOG_SG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsg\fR
|
||||
activity\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: newuidmap
|
||||
.\" Author: Eric Biederman
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "NEWUIDMAP" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "NEWUIDMAP" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+104
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: passwd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "PASSWD" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "PASSWD" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -193,6 +193,107 @@ Il se peut que les utilisateurs ne puissent pas changer leur mot de passe sur un
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBOBSCURE_CHECKS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable additional checks upon password changes\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_ALWAYS_WARN\fR (boolean)
|
||||
.RS 4
|
||||
Warn about weak passwords (but still allow them) if you are root\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_CHANGE_TRIES\fR (number)
|
||||
.RS 4
|
||||
Maximum number of attempts to change password if rejected (too easy)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_LEN\fR (number), \fBPASS_MIN_LEN\fR (number)
|
||||
.RS 4
|
||||
Number of significant characters in the password for crypt()\&.
|
||||
.sp
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is 8 by default\&. Don\*(Aqt change unless your crypt() is better\&.
|
||||
.sp
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is only used for DES\&. It is ignored if an encryption algorithm other than DES is used, either because
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
set to
|
||||
\fIyes\fR
|
||||
or
|
||||
\fBENCRYPT_METHOD\fR
|
||||
set to an algorithm other than
|
||||
\fIDES\fR\&.
|
||||
.sp
|
||||
In addition,
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is only used if
|
||||
\fBOBSCURE_CHECKS_ENAB\fR
|
||||
set to
|
||||
\fIyes\fR\&.
|
||||
.sp
|
||||
Note: This only affects the generation of user passwords\&. Group password lengths are not checked\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+10
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: sg
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "SG" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "SG" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -77,6 +77,13 @@ This is the default; for backward compatibility\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBSYSLOG_SG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsg\fR
|
||||
activity\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+163
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: su
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: User Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "SU" "1" "19/01/2026" "shadow\-utils 4\&.19\&.2" "User Commands"
|
||||
.TH "SU" "1" "01/02/2026" "shadow\-utils 4\&.19\&.3" "User Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -228,6 +228,166 @@ has many compilation options, only some of which may be in use at any particular
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCONSOLE\fR (string)
|
||||
.RS 4
|
||||
If defined, either full pathname of a file containing device names (one per line) or a ":" delimited list of device names\&. Root logins will be allowed only upon these devices\&.
|
||||
.sp
|
||||
If not defined, root will be allowed on any device\&.
|
||||
.sp
|
||||
The device should be specified without the /dev/ prefix\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCONSOLE_GROUPS\fR (string)
|
||||
.RS 4
|
||||
List of groups to add to the user\*(Aqs supplementary groups set when logging in on the console (as determined by the CONSOLE setting)\&. Default is none\&.
|
||||
|
||||
Use with caution \- it is possible for users to gain permanent access to these groups, even when not logged in on the console\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBDEFAULT_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if login is allowed if we can\*(Aqt cd to the home directory\&. Default is no\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR, the user will login in the root (/) directory if it is not possible to cd to her home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_HZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the HZ environment variable when a user login\&. The value must be preceded by
|
||||
\fIHZ=\fR\&. A common value on Linux is
|
||||
\fIHZ=100\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENVIRON_FILE\fR (string)
|
||||
.RS 4
|
||||
If this file exists and is readable, login environment will be read from it\&. Every line should be in the form name=value\&.
|
||||
.sp
|
||||
Lines starting with a # are treated as comment lines and ignored\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_PATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when a regular user login\&. The value is a colon separated list of paths (for example
|
||||
\fI/bin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/bin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_SUPATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when the superuser login\&. The value is a colon separated list of paths (for example
|
||||
\fI/sbin:/bin:/usr/sbin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/sbin:/bin:/usr/sbin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_TZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the TZ environment variable when a user login\&. The value can be the name of a timezone preceded by
|
||||
\fITZ=\fR
|
||||
(for example
|
||||
\fITZ=CST6CDT\fR), or the full path to the file containing the timezone specification (for example
|
||||
/etc/tzname)\&.
|
||||
.sp
|
||||
If a full path is specified but the file does not exist or cannot be read, the default is to use
|
||||
\fITZ=CST6CDT\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_CHECK_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking and display of mailbox status upon login\&.
|
||||
.sp
|
||||
You should disable it if the shell startup files already check for mail ("mailx \-e" or equivalent)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBQUOTAS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of resource limits from
|
||||
/etc/limits
|
||||
and ulimit, umask, and niceness from the user\*(Aqs passwd gecos field\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSULOG_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, all su activity is logged to this file\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSU_NAME\fR (string)
|
||||
.RS 4
|
||||
If defined, the command name to display when running "su \-"\&. For example, if this is defined as "su" then a "ps" will display the command is "\-su"\&. If not defined, then "ps" would display the name of the shell actually being run, e\&.g\&. something like "\-sh"\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSU_WHEEL_ONLY\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the user must be listed as a member of the first gid 0 group in
|
||||
/etc/group
|
||||
(called
|
||||
\fIroot\fR
|
||||
on most Linux systems) to be able to
|
||||
\fBsu\fR
|
||||
to uid 0 accounts\&. If the group doesn\*(Aqt exist or is empty, no one will be able to
|
||||
\fBsu\fR
|
||||
to uid 0\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYSLOG_SU_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsu\fR
|
||||
activity \- in addition to sulog file logging\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: shadow
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: Library Calls
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "SHADOW" "3" "19/01/2026" "shadow\-utils 4\&.19\&.2" "Library Calls"
|
||||
.TH "SHADOW" "3" "01/02/2026" "shadow\-utils 4\&.19\&.3" "Library Calls"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: faillog
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "FAILLOG" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuratio"
|
||||
.TH "FAILLOG" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuratio"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: gshadow
|
||||
.\" Author: Nicolas Fran\(,cois <nicolas.francois@centraliens.net>
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "GSHADOW" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "GSHADOW" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: limits
|
||||
.\" Author: Luca Berra
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "LIMITS" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "LIMITS" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: login.access
|
||||
.\" Author: Marek Micha\(/lkiewicz
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "LOGIN\&.ACCESS" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "LOGIN\&.ACCESS" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+672
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: login.defs
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "LOGIN\&.DEFS" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "LOGIN\&.DEFS" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -48,11 +48,680 @@ value\&. Numbers (both regular and long) may be either decimal values, octal val
|
||||
.PP
|
||||
Les param\(`etres de configuration suivants sont fournis\ \&:
|
||||
.PP
|
||||
\fBCHFN_AUTH\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the
|
||||
\fBchfn\fR
|
||||
program will require authentication before making any changes, unless run by the superuser\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCHFN_RESTRICT\fR (string)
|
||||
.RS 4
|
||||
This parameter specifies which values in the
|
||||
\fIgecos\fR
|
||||
field of the
|
||||
/etc/passwd
|
||||
file may be changed by regular users using the
|
||||
\fBchfn\fR
|
||||
program\&. It can be any combination of letters
|
||||
\fIf\fR,
|
||||
\fIr\fR,
|
||||
\fIw\fR,
|
||||
\fIh\fR, for Full name, Room number, Work phone, and Home phone, respectively\&. For backward compatibility,
|
||||
\fIyes\fR
|
||||
is equivalent to
|
||||
\fIrwh\fR
|
||||
and
|
||||
\fIno\fR
|
||||
is equivalent to
|
||||
\fIfrwh\fR\&. If not specified, only the superuser can make any changes\&. The most restrictive setting is better achieved by not installing
|
||||
\fBchfn\fR
|
||||
SUID\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCHSH_AUTH\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the
|
||||
\fBchsh\fR
|
||||
program will require authentication before making any changes, unless run by the superuser\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCONSOLE\fR (string)
|
||||
.RS 4
|
||||
If defined, either full pathname of a file containing device names (one per line) or a ":" delimited list of device names\&. Root logins will be allowed only upon these devices\&.
|
||||
.sp
|
||||
If not defined, root will be allowed on any device\&.
|
||||
.sp
|
||||
The device should be specified without the /dev/ prefix\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCONSOLE_GROUPS\fR (string)
|
||||
.RS 4
|
||||
List of groups to add to the user\*(Aqs supplementary groups set when logging in on the console (as determined by the CONSOLE setting)\&. Default is none\&.
|
||||
|
||||
Use with caution \- it is possible for users to gain permanent access to these groups, even when not logged in on the console\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBCREATE_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if a home directory should be created by default for new users\&.
|
||||
.sp
|
||||
This setting does not apply to system users, and can be overridden on the command line\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBDEFAULT_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if login is allowed if we can\*(Aqt cd to the home directory\&. Default is no\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR, the user will login in the root (/) directory if it is not possible to cd to her home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_HZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the HZ environment variable when a user login\&. The value must be preceded by
|
||||
\fIHZ=\fR\&. A common value on Linux is
|
||||
\fIHZ=100\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_PATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when a regular user login\&. The value is a colon separated list of paths (for example
|
||||
\fI/bin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/bin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_SUPATH\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the PATH environment variable when the superuser login\&. The value is a colon separated list of paths (for example
|
||||
\fI/sbin:/bin:/usr/sbin:/usr/bin\fR) and can be preceded by
|
||||
\fIPATH=\fR\&. The default value is
|
||||
\fIPATH=/sbin:/bin:/usr/sbin:/usr/bin\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_TZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the TZ environment variable when a user login\&. The value can be the name of a timezone preceded by
|
||||
\fITZ=\fR
|
||||
(for example
|
||||
\fITZ=CST6CDT\fR), or the full path to the file containing the timezone specification (for example
|
||||
/etc/tzname)\&.
|
||||
.sp
|
||||
If a full path is specified but the file does not exist or cannot be read, the default is to use
|
||||
\fITZ=CST6CDT\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENVIRON_FILE\fR (string)
|
||||
.RS 4
|
||||
If this file exists and is readable, login environment will be read from it\&. Every line should be in the form name=value\&.
|
||||
.sp
|
||||
Lines starting with a # are treated as comment lines and ignored\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBERASECHAR\fR (number)
|
||||
.RS 4
|
||||
Terminal ERASE character (\fI010\fR
|
||||
= backspace,
|
||||
\fI0177\fR
|
||||
= DEL)\&.
|
||||
.sp
|
||||
The value can be prefixed "0" for an octal value, or "0x" for an hexadecimal value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAIL_DELAY\fR (number)
|
||||
.RS 4
|
||||
Delay in seconds before being allowed another attempt after a login failure\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAILLOG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging and display of
|
||||
/var/log/faillog
|
||||
login failure info\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFAKE_SHELL\fR (string)
|
||||
.RS 4
|
||||
If set,
|
||||
\fBlogin\fR
|
||||
will execute this shell instead of the users\*(Aq shell specified in
|
||||
/etc/passwd\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBFTMP_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, login failures will be logged in this file in a utmp format\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBGID_MAX\fR (number), \fBGID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of regular groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBGID_MIN\fR
|
||||
(resp\&.
|
||||
\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHMAC_CRYPTO_ALGO\fR (string)
|
||||
.RS 4
|
||||
Used to select the HMAC cryptography algorithm that the pam_timestamp module is going to use to calculate the keyed\-hash message authentication code\&.
|
||||
.sp
|
||||
Note: check
|
||||
hmac(3)
|
||||
to see the possible algorithms that are available in your system\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHOME_MODE\fR (number)
|
||||
.RS 4
|
||||
The mode for new home directories\&. If not specified, the
|
||||
\fBUMASK\fR
|
||||
is used to create the mode\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this to set the mode of the home directory they create\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHUSHLOGIN_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, this file can inhibit all the usual chatter during the login sequence\&. If a full pathname is specified, then hushed mode will be enabled if the user\*(Aqs name or shell are found in the file\&. If not a full pathname, then hushed mode will be enabled if the file exists in the user\*(Aqs home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBISSUE_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, this file will be displayed before each login prompt\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBKILLCHAR\fR (number)
|
||||
.RS 4
|
||||
Terminal KILL character (\fI025\fR
|
||||
= CTRL/U)\&.
|
||||
.sp
|
||||
The value can be prefixed "0" for an octal value, or "0x" for an hexadecimal value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLASTLOG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging and display of /var/log/lastlog login time info\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLASTLOG_UID_MAX\fR (number)
|
||||
.RS 4
|
||||
Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&.
|
||||
.sp
|
||||
No
|
||||
\fBLASTLOG_UID_MAX\fR
|
||||
option present in the configuration means that there is no user ID limit for writing lastlog entries\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOG_OK_LOGINS\fR (boolean)
|
||||
.RS 4
|
||||
Enable logging of successful logins\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOG_UNKFAIL_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable display of unknown usernames when login failures are recorded\&.
|
||||
.sp
|
||||
Note: logging unknown usernames may be a security issue if an user enter her password instead of her login name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_RETRIES\fR (number)
|
||||
.RS 4
|
||||
Maximum number of login retries in case of bad password\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_STRING\fR (string)
|
||||
.RS 4
|
||||
The string used for prompting a password\&. The default is to use "Password: ", or a translation of that string\&. If you set this variable, the prompt will not be translated\&.
|
||||
.sp
|
||||
If the string contains
|
||||
\fI%s\fR, this will be replaced by the user\*(Aqs name\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLOGIN_TIMEOUT\fR (number)
|
||||
.RS 4
|
||||
Max time in seconds for login\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_CHECK_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking and display of mailbox status upon login\&.
|
||||
.sp
|
||||
You should disable it if the shell startup files already check for mail ("mailx \-e" or equivalent)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMOTD_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, ":" delimited list of "message of the day" files to be displayed upon login\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBNOLOGINS_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, name of file whose presence will inhibit non\-root logins\&. The contents of this file should be a message indicating why logins are inhibited\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBNONEXISTENT\fR (string)
|
||||
.RS 4
|
||||
If a system account intentionally does not have a home directory that exists, this string can be provided in the /etc/passwd entry for the account to indicate this\&. The result is that pwck will not emit a spurious warning for this account\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBOBSCURE_CHECKS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable additional checks upon password changes\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_ALWAYS_WARN\fR (boolean)
|
||||
.RS 4
|
||||
Warn about weak passwords (but still allow them) if you are root\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_CHANGE_TRIES\fR (number)
|
||||
.RS 4
|
||||
Maximum number of attempts to change password if rejected (too easy)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR,
|
||||
\fBPASS_MIN_DAYS\fR
|
||||
and
|
||||
\fBPASS_WARN_AGE\fR
|
||||
are only used at the time of account creation\&. Any changes to these settings won\*(Aqt affect existing accounts\&.
|
||||
.PP
|
||||
\fBPASS_MAX_LEN\fR (number), \fBPASS_MIN_LEN\fR (number)
|
||||
.RS 4
|
||||
Number of significant characters in the password for crypt()\&.
|
||||
.sp
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is 8 by default\&. Don\*(Aqt change unless your crypt() is better\&.
|
||||
.sp
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is only used for DES\&. It is ignored if an encryption algorithm other than DES is used, either because
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
set to
|
||||
\fIyes\fR
|
||||
or
|
||||
\fBENCRYPT_METHOD\fR
|
||||
set to an algorithm other than
|
||||
\fIDES\fR\&.
|
||||
.sp
|
||||
In addition,
|
||||
\fBPASS_MAX_LEN\fR
|
||||
is only used if
|
||||
\fBOBSCURE_CHECKS_ENAB\fR
|
||||
set to
|
||||
\fIyes\fR\&.
|
||||
.sp
|
||||
Note: This only affects the generation of user passwords\&. Group password lengths are not checked\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPORTTIME_CHECKS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable checking of time restrictions specified in
|
||||
/etc/porttime\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBQUOTAS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of resource limits from
|
||||
/etc/limits
|
||||
and ulimit, umask, and niceness from the user\*(Aqs passwd gecos field\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSULOG_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, all su activity is logged to this file\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSU_NAME\fR (string)
|
||||
.RS 4
|
||||
If defined, the command name to display when running "su \-"\&. For example, if this is defined as "su" then a "ps" will display the command is "\-su"\&. If not defined, then "ps" would display the name of the shell actually being run, e\&.g\&. something like "\-sh"\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSU_WHEEL_ONLY\fR (boolean)
|
||||
.RS 4
|
||||
If
|
||||
\fIyes\fR, the user must be listed as a member of the first gid 0 group in
|
||||
/etc/group
|
||||
(called
|
||||
\fIroot\fR
|
||||
on most Linux systems) to be able to
|
||||
\fBsu\fR
|
||||
to uid 0 accounts\&. If the group doesn\*(Aqt exist or is empty, no one will be able to
|
||||
\fBsu\fR
|
||||
to uid 0\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate group IDs) allocate
|
||||
\fBSUB_GID_COUNT\fR
|
||||
unused group IDs from the range
|
||||
\fBSUB_GID_MIN\fR
|
||||
to
|
||||
\fBSUB_GID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_GID_MIN\fR,
|
||||
\fBSUB_GID_MAX\fR,
|
||||
\fBSUB_GID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate user IDs) allocate
|
||||
\fBSUB_UID_COUNT\fR
|
||||
unused user IDs from the range
|
||||
\fBSUB_UID_MIN\fR
|
||||
to
|
||||
\fBSUB_UID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_UID_MIN\fR,
|
||||
\fBSUB_UID_MAX\fR,
|
||||
\fBSUB_UID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of system groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_GID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_GID_MAX\fR) is 101 (resp\&.
|
||||
\fBGID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_UID_MAX\fR (number), \fBSYS_UID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of system users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_UID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_UID_MAX\fR) is 101 (resp\&.
|
||||
\fBUID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYSLOG_SG_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsg\fR
|
||||
activity\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYSLOG_SU_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable "syslog" logging of
|
||||
\fBsu\fR
|
||||
activity \- in addition to sulog file logging\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBTTYGROUP\fR (string), \fBTTYPERM\fR (number)
|
||||
.RS 4
|
||||
The terminal permissions: the login tty will be owned by the
|
||||
\fBTTYGROUP\fR
|
||||
group, and the permissions will be set to
|
||||
\fBTTYPERM\fR\&.
|
||||
.sp
|
||||
\fBTTYGROUP\fR
|
||||
can be either the name of a group or a numeric group identifier\&.
|
||||
.sp
|
||||
If TTYGROUP is not defined, then the group ownership of the terminal is set to the user\*(Aqs primary group\&. If TTYPERM is not defined, then the permissions are set to
|
||||
\fI0600\fR\&.
|
||||
.sp
|
||||
If you have a
|
||||
\fBwrite\fR
|
||||
program which is "setgid" to a special group which owns the terminals, define TTYGROUP to the group number and TTYPERM to 0620\&. Otherwise leave TTYGROUP commented out and assign TTYPERM to either 622 or 600\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBTTYTYPE_FILE\fR (string)
|
||||
.RS 4
|
||||
If defined, file which maps tty line to TERM environment parameter\&. Each line of the file is in a format something like "vt100 tty01"\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUID_MAX\fR (number), \fBUID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of regular users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBUID_MIN\fR
|
||||
(resp\&.
|
||||
\fBUID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBULIMIT\fR (number)
|
||||
.RS 4
|
||||
Default
|
||||
\fBulimit\fR
|
||||
value\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUMASK\fR (number)
|
||||
.RS 4
|
||||
The file mode creation mask is initialized to this value\&. If not specified, the mask will be initialized to 022\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this mask to set the mode of the home directory they create if
|
||||
\fBHOME_MODE\fR
|
||||
is not set\&.
|
||||
.sp
|
||||
It is also used by
|
||||
\fBlogin\fR
|
||||
to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if
|
||||
\fBQUOTAS_ENAB\fR
|
||||
is set) or by the specification of a limit with the
|
||||
\fIK\fR
|
||||
identifier in
|
||||
\fBlimits\fR(5)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERDEL_CMD\fR (string)
|
||||
.RS 4
|
||||
If defined, this command is run when removing a user\&. It should remove any at/cron/print jobs etc\&. owned by the user to be removed (passed as the first argument)\&.
|
||||
.sp
|
||||
The return code of the script is not taken into account\&.
|
||||
.sp
|
||||
Here is an example script, which removes the user\*(Aqs cron, at and print jobs:
|
||||
.sp
|
||||
.if n \{\
|
||||
.RS 4
|
||||
.\}
|
||||
.nf
|
||||
#! /bin/sh
|
||||
|
||||
# Check for the required argument\&.
|
||||
if [ $# != 1 ]; then
|
||||
echo "Usage: $0 username"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
# Remove cron jobs\&.
|
||||
crontab \-r \-u $1
|
||||
|
||||
# Remove at jobs\&.
|
||||
# Note that it will remove any jobs owned by the same UID,
|
||||
# even if it was shared by a different username\&.
|
||||
AT_SPOOL_DIR=/var/spool/cron/atjobs
|
||||
find $AT_SPOOL_DIR \-name "[^\&.]*" \-type f \-user $1 \-delete \e;
|
||||
|
||||
# Remove print jobs\&.
|
||||
lprm $1
|
||||
|
||||
# All done\&.
|
||||
exit 0
|
||||
|
||||
.fi
|
||||
.if n \{\
|
||||
.RE
|
||||
.\}
|
||||
.sp
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "R\('EF\('ERENCES CROIS\('EES"
|
||||
.PP
|
||||
Les r\('ef\('erences crois\('ees ci\-dessous montrent quels sont les param\(`etres utilis\('es par les diff\('erents programmes de la suite shadow password\&.
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: passwd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "PASSWD" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "PASSWD" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: porttime
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "PORTTIME" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "PORTTIME" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: shadow
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "SHADOW" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "SHADOW" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: suauth
|
||||
.\" Author: Marek Micha\(/lkiewicz
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "SUAUTH" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "SUAUTH" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: subgid
|
||||
.\" Author: Eric Biederman
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "SUBGID" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "SUBGID" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: subuid
|
||||
.\" Author: Eric Biederman
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: File Formats and Configuration Files
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "SUBUID" "5" "19/01/2026" "shadow\-utils 4\&.19\&.2" "File Formats and Configuration"
|
||||
.TH "SUBUID" "5" "01/02/2026" "shadow\-utils 4\&.19\&.3" "File Formats and Configuration"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+77
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: chgpasswd
|
||||
.\" Author: Thomas K\(/loczko <kloczek@pld.org.pl>
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "CHGPASSWD" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "CHGPASSWD" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -117,6 +117,80 @@ Vous devez vous assurer que les mots de passe et la m\('ethode de chiffrement re
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+62
-4
@@ -2,12 +2,12 @@
|
||||
.\" Title: chpasswd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "CHPASSWD" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "CHPASSWD" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -137,7 +137,65 @@ Pensez \(`a configurer les permissions ou umask afin d\*(Aqemp\(^echer la lectur
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: faillog
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "FAILLOG" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "FAILLOG" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+45
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: groupadd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "GROUPADD" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GROUPADD" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -162,6 +162,48 @@ variable in
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBGID_MAX\fR (number), \fBGID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of regular groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBGID_MIN\fR
|
||||
(resp\&.
|
||||
\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of system groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_GID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_GID_MAX\fR) is 101 (resp\&.
|
||||
\fBGID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+18
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: groupdel
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "GROUPDEL" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GROUPDEL" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -81,6 +81,21 @@ Vous devriez v\('erifier vous\-m\(^eme qu\*(Aqaucun fichier poss\('ed\('e par le
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+18
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: groupmems
|
||||
.\" Author: George Kraft, IV
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "GROUPMEMS" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GROUPMEMS" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -142,6 +142,21 @@ utility to manage their own group membership list\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+18
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: groupmod
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "GROUPMOD" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GROUPMOD" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -147,6 +147,21 @@ variable in
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+18
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: grpck
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "GRPCK" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "GRPCK" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -179,6 +179,21 @@ and \fIshadow\fR parameters\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+12
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: lastlog
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "LASTLOG" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "LASTLOG" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -122,6 +122,15 @@ users with a high UID)\&. You can display its real size with "\fBls \-s\fR"\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBLASTLOG_UID_MAX\fR (number)
|
||||
.RS 4
|
||||
Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&.
|
||||
.sp
|
||||
No
|
||||
\fBLASTLOG_UID_MAX\fR
|
||||
option present in the configuration means that there is no user ID limit for writing lastlog entries\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/var/log/lastlog
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: logoutd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "LOGOUTD" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "LOGOUTD" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+225
-8
@@ -2,12 +2,12 @@
|
||||
.\" Title: newusers
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "NEWUSERS" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "NEWUSERS" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -186,11 +186,228 @@ Vous devez vous assurer que les mots de passe et la m\('ethode de chiffrement re
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
.PP
|
||||
\fBENCRYPT_METHOD\fR (string)
|
||||
.RS 4
|
||||
This defines the system default encryption algorithm for encrypting passwords (if no algorithm is specified on the command line)\&.
|
||||
.sp
|
||||
It can take one of these values:
|
||||
\fIDES\fR
|
||||
(default),
|
||||
\fIMD5\fR, \fISHA256\fR, \fISHA512\fR\&. MD5 and DES should not be used for new hashes, see
|
||||
crypt(5)
|
||||
for recommendations\&.
|
||||
.sp
|
||||
Note: this parameter overrides the
|
||||
\fBMD5_CRYPT_ENAB\fR
|
||||
variable\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBGID_MAX\fR (number), \fBGID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of regular groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBGID_MIN\fR
|
||||
(resp\&.
|
||||
\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHOME_MODE\fR (number)
|
||||
.RS 4
|
||||
The mode for new home directories\&. If not specified, the
|
||||
\fBUMASK\fR
|
||||
is used to create the mode\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this to set the mode of the home directory they create\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMD5_CRYPT_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if passwords must be encrypted using the MD5\-based algorithm\&. If set to
|
||||
\fIyes\fR, new passwords will be encrypted using the MD5\-based algorithm compatible with the one used by recent releases of FreeBSD\&. It supports passwords of unlimited length and longer salt strings\&. Set to
|
||||
\fIno\fR
|
||||
if you need to copy encrypted passwords to other systems which don\*(Aqt understand the new algorithm\&. Default is
|
||||
\fIno\fR\&.
|
||||
.sp
|
||||
This variable is superseded by the
|
||||
\fBENCRYPT_METHOD\fR
|
||||
variable or by any command line option used to configure the encryption algorithm\&.
|
||||
.sp
|
||||
This variable is deprecated\&. You should use
|
||||
\fBENCRYPT_METHOD\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR (number), \fBSHA_CRYPT_MAX_ROUNDS\fR (number)
|
||||
.RS 4
|
||||
When
|
||||
\fBENCRYPT_METHOD\fR
|
||||
is set to
|
||||
\fISHA256\fR
|
||||
or
|
||||
\fISHA512\fR, this defines the number of SHA rounds used by the encryption algorithm by default (when the number of rounds is not specified on the command line)\&.
|
||||
.sp
|
||||
With a lot of rounds, it is more difficult to brute force the password\&. But note also that more CPU resources will be needed to authenticate users\&.
|
||||
.sp
|
||||
If not specified, the libc will choose the default number of rounds (5000), which is orders of magnitude too low for modern hardware\&.
|
||||
.sp
|
||||
The values must be inside the 1000\-999,999,999 range\&.
|
||||
.sp
|
||||
If only one of the
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
or
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR
|
||||
values is set, then this value will be used\&.
|
||||
.sp
|
||||
If
|
||||
\fBSHA_CRYPT_MIN_ROUNDS\fR
|
||||
>
|
||||
\fBSHA_CRYPT_MAX_ROUNDS\fR, the highest value will be used\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate group IDs) allocate
|
||||
\fBSUB_GID_COUNT\fR
|
||||
unused group IDs from the range
|
||||
\fBSUB_GID_MIN\fR
|
||||
to
|
||||
\fBSUB_GID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_GID_MIN\fR,
|
||||
\fBSUB_GID_MAX\fR,
|
||||
\fBSUB_GID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate user IDs) allocate
|
||||
\fBSUB_UID_COUNT\fR
|
||||
unused user IDs from the range
|
||||
\fBSUB_UID_MIN\fR
|
||||
to
|
||||
\fBSUB_UID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_UID_MIN\fR,
|
||||
\fBSUB_UID_MAX\fR,
|
||||
\fBSUB_UID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of system groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_GID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_GID_MAX\fR) is 101 (resp\&.
|
||||
\fBGID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_UID_MAX\fR (number), \fBSYS_UID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of system users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_UID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_UID_MAX\fR) is 101 (resp\&.
|
||||
\fBUID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUID_MAX\fR (number), \fBUID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of regular users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBUID_MIN\fR
|
||||
(resp\&.
|
||||
\fBUID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUMASK\fR (number)
|
||||
.RS 4
|
||||
The file mode creation mask is initialized to this value\&. If not specified, the mask will be initialized to 022\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this mask to set the mode of the home directory they create if
|
||||
\fBHOME_MODE\fR
|
||||
is not set\&.
|
||||
.sp
|
||||
It is also used by
|
||||
\fBlogin\fR
|
||||
to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if
|
||||
\fBQUOTAS_ENAB\fR
|
||||
is set) or by the specification of a limit with the
|
||||
\fIK\fR
|
||||
identifier in
|
||||
\fBlimits\fR(5)\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
@@ -2,12 +2,12 @@
|
||||
.\" Title: nologin
|
||||
.\" Author: Nicolas Fran\(,cois <nicolas.francois@centraliens.net>
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "NOLOGIN" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "NOLOGIN" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+23
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: pwck
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "PWCK" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "PWCK" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -249,6 +249,26 @@ parameters\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBNONEXISTENT\fR (string)
|
||||
.RS 4
|
||||
If a system account intentionally does not have a home directory that exists, this string can be provided in the /etc/passwd entry for the account to indicate this\&. The result is that pwck will not emit a spurious warning for this account\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+33
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: pwconv
|
||||
.\" Author: Marek Micha\(/lkiewicz
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "PWCONV" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "PWCONV" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -146,10 +146,40 @@ changes the behavior of
|
||||
and
|
||||
\fBgrpunconv\fR:
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of
|
||||
\fBpwconv\fR:
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/login\&.defs
|
||||
|
||||
+22
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: sulogin
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "SULOGIN" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "SULOGIN" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -79,6 +79,25 @@ As complete an environment as possible is created\&. However, various devices ma
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBENV_HZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the HZ environment variable when a user login\&. The value must be preceded by
|
||||
\fIHZ=\fR\&. A common value on Linux is
|
||||
\fIHZ=100\fR\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBENV_TZ\fR (string)
|
||||
.RS 4
|
||||
If set, it will be used to define the TZ environment variable when a user login\&. The value can be the name of a timezone preceded by
|
||||
\fITZ=\fR
|
||||
(for example
|
||||
\fITZ=CST6CDT\fR), or the full path to the file containing the timezone specification (for example
|
||||
/etc/tzname)\&.
|
||||
.sp
|
||||
If a full path is specified but the file does not exist or cannot be read, the default is to use
|
||||
\fITZ=CST6CDT\fR\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+223
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: useradd
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "USERADD" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "USERADD" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -503,6 +503,226 @@ Les noms d\*(Aqutilisateur sont limit\('es \(`a 256 caract\(`eres\&.
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBCREATE_HOME\fR (boolean)
|
||||
.RS 4
|
||||
Indicate if a home directory should be created by default for new users\&.
|
||||
.sp
|
||||
This setting does not apply to system users, and can be overridden on the command line\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBGID_MAX\fR (number), \fBGID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of regular groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBGID_MIN\fR
|
||||
(resp\&.
|
||||
\fBGID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBHOME_MODE\fR (number)
|
||||
.RS 4
|
||||
The mode for new home directories\&. If not specified, the
|
||||
\fBUMASK\fR
|
||||
is used to create the mode\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this to set the mode of the home directory they create\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBLASTLOG_UID_MAX\fR (number)
|
||||
.RS 4
|
||||
Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&.
|
||||
.sp
|
||||
No
|
||||
\fBLASTLOG_UID_MAX\fR
|
||||
option present in the configuration means that there is no user ID limit for writing lastlog entries\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MAX_DAYS\fR (number)
|
||||
.RS 4
|
||||
The maximum number of days a password may be used\&. If the password is older than this, a password change will be forced\&. If not specified, \-1 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_MIN_DAYS\fR (number)
|
||||
.RS 4
|
||||
The minimum number of days allowed between password changes\&. Any password changes attempted sooner than this will be rejected\&. If not specified, 0 will be assumed (which disables the restriction)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBPASS_WARN_AGE\fR (number)
|
||||
.RS 4
|
||||
The number of days warning given before a password expires\&. A zero means warning is given only upon the day of expiration, a value of \-1 means no warning is given\&. If not specified, no warning will be provided\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate group IDs) allocate
|
||||
\fBSUB_GID_COUNT\fR
|
||||
unused group IDs from the range
|
||||
\fBSUB_GID_MIN\fR
|
||||
to
|
||||
\fBSUB_GID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_GID_MIN\fR,
|
||||
\fBSUB_GID_MAX\fR,
|
||||
\fBSUB_GID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate user IDs) allocate
|
||||
\fBSUB_UID_COUNT\fR
|
||||
unused user IDs from the range
|
||||
\fBSUB_UID_MIN\fR
|
||||
to
|
||||
\fBSUB_UID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_UID_MIN\fR,
|
||||
\fBSUB_UID_MAX\fR,
|
||||
\fBSUB_UID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_GID_MAX\fR (number), \fBSYS_GID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of group IDs used for the creation of system groups by
|
||||
\fBuseradd\fR,
|
||||
\fBgroupadd\fR, or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_GID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_GID_MAX\fR) is 101 (resp\&.
|
||||
\fBGID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSYS_UID_MAX\fR (number), \fBSYS_UID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of system users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBSYS_UID_MIN\fR
|
||||
(resp\&.
|
||||
\fBSYS_UID_MAX\fR) is 101 (resp\&.
|
||||
\fBUID_MIN\fR\-1)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUID_MAX\fR (number), \fBUID_MIN\fR (number)
|
||||
.RS 4
|
||||
Range of user IDs used for the creation of regular users by
|
||||
\fBuseradd\fR
|
||||
or
|
||||
\fBnewusers\fR\&.
|
||||
.sp
|
||||
The default value for
|
||||
\fBUID_MIN\fR
|
||||
(resp\&.
|
||||
\fBUID_MAX\fR) is 1000 (resp\&. 60000)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUMASK\fR (number)
|
||||
.RS 4
|
||||
The file mode creation mask is initialized to this value\&. If not specified, the mask will be initialized to 022\&.
|
||||
.sp
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
use this mask to set the mode of the home directory they create if
|
||||
\fBHOME_MODE\fR
|
||||
is not set\&.
|
||||
.sp
|
||||
It is also used by
|
||||
\fBlogin\fR
|
||||
to define users\*(Aq initial umask\&. Note that this mask can be overridden by the user\*(Aqs GECOS line (if
|
||||
\fBQUOTAS_ENAB\fR
|
||||
is set) or by the specification of a limit with the
|
||||
\fIK\fR
|
||||
identifier in
|
||||
\fBlimits\fR(5)\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/passwd
|
||||
|
||||
+101
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: userdel
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "USERDEL" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "USERDEL" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -95,6 +95,104 @@ directory\&. This option does not chroot and is intended for preparing a cross\-
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERDEL_CMD\fR (string)
|
||||
.RS 4
|
||||
If defined, this command is run when removing a user\&. It should remove any at/cron/print jobs etc\&. owned by the user to be removed (passed as the first argument)\&.
|
||||
.sp
|
||||
The return code of the script is not taken into account\&.
|
||||
.sp
|
||||
Here is an example script, which removes the user\*(Aqs cron, at and print jobs:
|
||||
.sp
|
||||
.if n \{\
|
||||
.RS 4
|
||||
.\}
|
||||
.nf
|
||||
#! /bin/sh
|
||||
|
||||
# Check for the required argument\&.
|
||||
if [ $# != 1 ]; then
|
||||
echo "Usage: $0 username"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
# Remove cron jobs\&.
|
||||
crontab \-r \-u $1
|
||||
|
||||
# Remove at jobs\&.
|
||||
# Note that it will remove any jobs owned by the same UID,
|
||||
# even if it was shared by a different username\&.
|
||||
AT_SPOOL_DIR=/var/spool/cron/atjobs
|
||||
find $AT_SPOOL_DIR \-name "[^\&.]*" \-type f \-user $1 \-delete \e;
|
||||
|
||||
# Remove print jobs\&.
|
||||
lprm $1
|
||||
|
||||
# All done\&.
|
||||
exit 0
|
||||
|
||||
.fi
|
||||
.if n \{\
|
||||
.RE
|
||||
.\}
|
||||
.sp
|
||||
.RE
|
||||
.PP
|
||||
\fBUSERGROUPS_ENAB\fR (boolean)
|
||||
.RS 4
|
||||
Enable setting of the umask group bits to be the same as owner bits (examples: 022 \-> 002, 077 \-> 007) for non\-root users, if the uid is the same as gid, and username is the same as the primary group name\&.
|
||||
.sp
|
||||
If set to
|
||||
\fIyes\fR,
|
||||
\fBuserdel\fR
|
||||
will remove the user\*(Aqs group if it contains no more members, and
|
||||
\fBuseradd\fR
|
||||
will create by default a group with the name of the user\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+102
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: usermod
|
||||
.\" Author: Julianne Frances Haugh
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "USERMOD" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "USERMOD" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
@@ -340,6 +340,105 @@ Les modifications qui concernent NIS doivent \(^etre effectu\('ees sur le serveu
|
||||
The following configuration variables in
|
||||
/etc/login\&.defs
|
||||
change the behavior of this tool:
|
||||
.PP
|
||||
\fBLASTLOG_UID_MAX\fR (number)
|
||||
.RS 4
|
||||
Highest user ID number for which the lastlog entries should be updated\&. As higher user IDs are usually tracked by remote user identity and authentication services there is no need to create a huge sparse lastlog file for them\&.
|
||||
.sp
|
||||
No
|
||||
\fBLASTLOG_UID_MAX\fR
|
||||
option present in the configuration means that there is no user ID limit for writing lastlog entries\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_DIR\fR (string)
|
||||
.RS 4
|
||||
The mail spool directory\&. This is needed to manipulate the mailbox when its corresponding user account is modified or deleted\&. If not specified, a compile\-time default is used\&. The parameter CREATE_MAIL_SPOOL in
|
||||
/etc/default/useradd
|
||||
determines whether the mail spool should be created\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBMAIL_FILE\fR (string)
|
||||
.RS 4
|
||||
Defines the location of the users mail spool files relatively to their home directory\&.
|
||||
.RE
|
||||
.PP
|
||||
The
|
||||
\fBMAIL_DIR\fR
|
||||
and
|
||||
\fBMAIL_FILE\fR
|
||||
variables are used by
|
||||
\fBuseradd\fR,
|
||||
\fBusermod\fR, and
|
||||
\fBuserdel\fR
|
||||
to create, move, or delete the user\*(Aqs mail spool\&.
|
||||
.PP
|
||||
If
|
||||
\fBMAIL_CHECK_ENAB\fR
|
||||
is set to
|
||||
\fIyes\fR, they are also used to define the
|
||||
\fBMAIL\fR
|
||||
environment variable\&.
|
||||
.PP
|
||||
\fBMAX_MEMBERS_PER_GROUP\fR (number)
|
||||
.RS 4
|
||||
Maximum members per group entry\&. When the maximum is reached, a new group entry (line) is started in
|
||||
/etc/group
|
||||
(with the same name, same password, and same GID)\&.
|
||||
.sp
|
||||
The default value is 0, meaning that there are no limits in the number of members in a group\&.
|
||||
.sp
|
||||
This feature (split group) permits to limit the length of lines in the group file\&. This is useful to make sure that lines for NIS groups are not larger than 1024 characters\&.
|
||||
.sp
|
||||
If you need to enforce such limit, you can use 25\&.
|
||||
.sp
|
||||
Note: split groups may not be supported by all tools (even in the Shadow toolsuite)\&. You should not use this variable unless you really need it\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_GID_MIN\fR (number), \fBSUB_GID_MAX\fR (number), \fBSUB_GID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate group IDs) allocate
|
||||
\fBSUB_GID_COUNT\fR
|
||||
unused group IDs from the range
|
||||
\fBSUB_GID_MIN\fR
|
||||
to
|
||||
\fBSUB_GID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_GID_MIN\fR,
|
||||
\fBSUB_GID_MAX\fR,
|
||||
\fBSUB_GID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.PP
|
||||
\fBSUB_UID_MIN\fR (number), \fBSUB_UID_MAX\fR (number), \fBSUB_UID_COUNT\fR (number)
|
||||
.RS 4
|
||||
If
|
||||
/etc/subuid
|
||||
exists, the commands
|
||||
\fBuseradd\fR
|
||||
and
|
||||
\fBnewusers\fR
|
||||
(unless the user already have subordinate user IDs) allocate
|
||||
\fBSUB_UID_COUNT\fR
|
||||
unused user IDs from the range
|
||||
\fBSUB_UID_MIN\fR
|
||||
to
|
||||
\fBSUB_UID_MAX\fR
|
||||
for each new user\&.
|
||||
.sp
|
||||
The default values for
|
||||
\fBSUB_UID_MIN\fR,
|
||||
\fBSUB_UID_MAX\fR,
|
||||
\fBSUB_UID_COUNT\fR
|
||||
are respectively 100000, 600100000 and 65536\&.
|
||||
.RE
|
||||
.SH "FICHIERS"
|
||||
.PP
|
||||
/etc/group
|
||||
|
||||
+3
-3
@@ -2,12 +2,12 @@
|
||||
.\" Title: vipw
|
||||
.\" Author: Marek Micha\(/lkiewicz
|
||||
.\" Generator: DocBook XSL Stylesheets vsnapshot <http://docbook.sf.net/>
|
||||
.\" Date: 19/01/2026
|
||||
.\" Date: 01/02/2026
|
||||
.\" Manual: System Management Commands
|
||||
.\" Source: shadow-utils 4.19.2
|
||||
.\" Source: shadow-utils 4.19.3
|
||||
.\" Language: French
|
||||
.\"
|
||||
.TH "VIPW" "8" "19/01/2026" "shadow\-utils 4\&.19\&.2" "System Management Commands"
|
||||
.TH "VIPW" "8" "01/02/2026" "shadow\-utils 4\&.19\&.3" "System Management Commands"
|
||||
.\" -----------------------------------------------------------------
|
||||
.\" * Define some portability stuff
|
||||
.\" -----------------------------------------------------------------
|
||||
|
||||
+20
-8
@@ -1,7 +1,7 @@
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.18.1 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2025 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
@@ -69,6 +69,8 @@ am__make_running_with_option = \
|
||||
test $$has_opt = yes
|
||||
am__make_dryrun = (target_option=n; $(am__make_running_with_option))
|
||||
am__make_keepgoing = (target_option=k; $(am__make_running_with_option))
|
||||
am__rm_f = rm -f $(am__rm_f_notfound)
|
||||
am__rm_rf = rm -rf $(am__rm_f_notfound)
|
||||
pkgdatadir = $(datadir)/@PACKAGE@
|
||||
pkgincludedir = $(includedir)/@PACKAGE@
|
||||
pkglibdir = $(libdir)/@PACKAGE@
|
||||
@@ -147,10 +149,9 @@ am__base_list = \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g'
|
||||
am__uninstall_files_from_dir = { \
|
||||
test -z "$$files" \
|
||||
|| { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && rm -f $$files; }; \
|
||||
{ test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && echo $$files | $(am__xargs_n) 40 $(am__rm_f); }; \
|
||||
}
|
||||
man1dir = $(mandir)/man1
|
||||
am__installdirs = "$(DESTDIR)$(man1dir)" "$(DESTDIR)$(man5dir)" \
|
||||
@@ -194,6 +195,7 @@ EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
FILECMD = @FILECMD@
|
||||
GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@
|
||||
GMSGFMT = @GMSGFMT@
|
||||
GMSGFMT_015 = @GMSGFMT_015@
|
||||
@@ -293,8 +295,10 @@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@
|
||||
am__include = @am__include@
|
||||
am__leading_dot = @am__leading_dot@
|
||||
am__quote = @am__quote@
|
||||
am__rm_f_notfound = @am__rm_f_notfound@
|
||||
am__tar = @am__tar@
|
||||
am__untar = @am__untar@
|
||||
am__xargs_n = @am__xargs_n@
|
||||
bindir = @bindir@
|
||||
build = @build@
|
||||
build_alias = @build_alias@
|
||||
@@ -514,6 +518,7 @@ ctags CTAGS:
|
||||
|
||||
cscope cscopelist:
|
||||
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
@@ -578,8 +583,8 @@ mostlyclean-generic:
|
||||
clean-generic:
|
||||
|
||||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-$(am__rm_f) $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || $(am__rm_f) $(CONFIG_CLEAN_VPATH_FILES)
|
||||
|
||||
maintainer-clean-generic:
|
||||
@echo "This command is intended for maintainers to use"
|
||||
@@ -674,3 +679,10 @@ uninstall-man: uninstall-man1 uninstall-man5 uninstall-man8
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
||||
# Tell GNU make to disable its built-in pattern rules.
|
||||
%:: %,v
|
||||
%:: RCS/%,v
|
||||
%:: RCS/%
|
||||
%:: s.%
|
||||
%:: SCCS/s.%
|
||||
|
||||
+20
-8
@@ -1,7 +1,7 @@
|
||||
# Makefile.in generated by automake 1.16.5 from Makefile.am.
|
||||
# Makefile.in generated by automake 1.18.1 from Makefile.am.
|
||||
# @configure_input@
|
||||
|
||||
# Copyright (C) 1994-2021 Free Software Foundation, Inc.
|
||||
# Copyright (C) 1994-2025 Free Software Foundation, Inc.
|
||||
|
||||
# This Makefile.in is free software; the Free Software Foundation
|
||||
# gives unlimited permission to copy and/or distribute it,
|
||||
@@ -69,6 +69,8 @@ am__make_running_with_option = \
|
||||
test $$has_opt = yes
|
||||
am__make_dryrun = (target_option=n; $(am__make_running_with_option))
|
||||
am__make_keepgoing = (target_option=k; $(am__make_running_with_option))
|
||||
am__rm_f = rm -f $(am__rm_f_notfound)
|
||||
am__rm_rf = rm -rf $(am__rm_f_notfound)
|
||||
pkgdatadir = $(datadir)/@PACKAGE@
|
||||
pkgincludedir = $(includedir)/@PACKAGE@
|
||||
pkglibdir = $(libdir)/@PACKAGE@
|
||||
@@ -146,10 +148,9 @@ am__base_list = \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \
|
||||
sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g'
|
||||
am__uninstall_files_from_dir = { \
|
||||
test -z "$$files" \
|
||||
|| { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && rm -f $$files; }; \
|
||||
{ test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \
|
||||
|| { echo " ( cd '$$dir' && rm -f" $$files ")"; \
|
||||
$(am__cd) "$$dir" && echo $$files | $(am__xargs_n) 40 $(am__rm_f); }; \
|
||||
}
|
||||
man1dir = $(mandir)/man1
|
||||
am__installdirs = "$(DESTDIR)$(man1dir)" "$(DESTDIR)$(man8dir)"
|
||||
@@ -191,6 +192,7 @@ EGREP = @EGREP@
|
||||
ETAGS = @ETAGS@
|
||||
EXEEXT = @EXEEXT@
|
||||
FGREP = @FGREP@
|
||||
FILECMD = @FILECMD@
|
||||
GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@
|
||||
GMSGFMT = @GMSGFMT@
|
||||
GMSGFMT_015 = @GMSGFMT_015@
|
||||
@@ -290,8 +292,10 @@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@
|
||||
am__include = @am__include@
|
||||
am__leading_dot = @am__leading_dot@
|
||||
am__quote = @am__quote@
|
||||
am__rm_f_notfound = @am__rm_f_notfound@
|
||||
am__tar = @am__tar@
|
||||
am__untar = @am__untar@
|
||||
am__xargs_n = @am__xargs_n@
|
||||
bindir = @bindir@
|
||||
build = @build@
|
||||
build_alias = @build_alias@
|
||||
@@ -470,6 +474,7 @@ ctags CTAGS:
|
||||
|
||||
cscope cscopelist:
|
||||
|
||||
|
||||
distdir: $(BUILT_SOURCES)
|
||||
$(MAKE) $(AM_MAKEFLAGS) distdir-am
|
||||
|
||||
@@ -534,8 +539,8 @@ mostlyclean-generic:
|
||||
clean-generic:
|
||||
|
||||
distclean-generic:
|
||||
-test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES)
|
||||
-$(am__rm_f) $(CONFIG_CLEAN_FILES)
|
||||
-test . = "$(srcdir)" || $(am__rm_f) $(CONFIG_CLEAN_VPATH_FILES)
|
||||
|
||||
maintainer-clean-generic:
|
||||
@echo "This command is intended for maintainers to use"
|
||||
@@ -629,3 +634,10 @@ uninstall-man: uninstall-man1 uninstall-man8
|
||||
# Tell versions [3.59,3.63) of GNU make to not export all variables.
|
||||
# Otherwise a system limit (for SysV at least) may be exceeded.
|
||||
.NOEXPORT:
|
||||
|
||||
# Tell GNU make to disable its built-in pattern rules.
|
||||
%:: %,v
|
||||
%:: RCS/%,v
|
||||
%:: RCS/%
|
||||
%:: s.%
|
||||
%:: SCCS/s.%
|
||||
|
||||
Some files were not shown because too many files have changed in this diff Show More
Reference in New Issue
Block a user