summaryrefslogtreecommitdiff
path: root/localresetpasswd
blob: d49916434c27e9210a0436011fb345a4a77c7967 (plain) 
    

  1. #!/bin/sh
    2. 

  2. #
    3. 

  3. # /usr/local/bin/localresetpasswd
    4. 

  4. # Copyright 2006 Jonas Smedegaard <dr@jones.dk>
    5. 

  5. #
    6. 

  6. # $Id: localresetpasswd,v 1.1 2006-08-31 22:51:03 jonas Exp $
    7. 

  7. #
    8. 

  8. # Generate random passphrase and apply to account through sudo
    9. 

  9. #
    10. 

  10. # TODO: Check for bad arguments
    11. 

  11. # TODO: Use getopts to offer help
    12. 

  12. # TODO: Support overriding options in /etc/local file
    13. 

  13. #
    14. 

  14. 

  15. set -eu
    16. 

  16. 

  17. # these are overridable as environment variables
    18. 

  18. PHRASE_LENGTH=${PHRASE_LENGTH:-3}
    19. 

  19. WORD_LENGTH=${WORD_LENGTH:-11}
    20. 

  20. VERBOSE=${VERBOSE:-yes}
    21. 

  21. SIMULATE=${SIMULATE:-}
    22. 

  22. 

  23. simulate=${SIMULATE:+true}
    24. 

  24. 

  25. # echo something, but only if in verbose mode
    26. 

  26. vecho() {
    27. 

  27.     test -n "$VERBOSE" && echo "$@" >&2
    28. 

  28. }
    29. 

  29. 

  30. randompass() {
    31. 

  31.     xkcdpass -n "$PHRASE_LENGTH" 2>&- ||
    32. 

  32.     gpw 1 "$WORD_LENGTH" 2>&- ||
    33. 

  33.     pwgen "$WORD_LENGTH" 1 2>&- ||
    34. 

  34.     tr -d '\000-\057\072-\100\133-\140\173-\377' < /dev/urandom |
    35. 

  35.         dd bs="$WORD_LENGTH" count=1 status=none
    36. 

  36. }
    37. 

  37. 

  38. u=$1
    39. 

  39. shift
    40. 

  40. 

  41. vecho -n "Generating random passphrase..."
    42. 

  42. pass=$(randompass)
    43. 

  43. vecho " Done!"
    44. 

  44. 

  45. sudo=sudo
    46. 

  46. [ "$(id -u)" -ne 0 ] || sudo=
    47. 

  47. 

  48. vecho -n "Applying new passphrase to account $u..."
    49. 

  49. echo "$u:$pass" | $simulate $sudo "/usr/sbin/chpasswd"
    50. 

  50. vecho "  Done!"
    51. 

  51. 

  52. $simulate localresetpasswdexpiry "$u"
    53. 

  53. 

  54. vecho "New passphrase is $pass"
    55.
generated by cgit v1.2.3 (git 2.39.1) at 2024-04-25 11:38:36 +0000