From e06baf0221e2e4e15fc7ece124cf8a314e6cbe89 Mon Sep 17 00:00:00 2001
From: Jonas Smedegaard <dr@jones.dk>
Date: Mon, 8 May 2006 09:13:15 +0000
Subject: New script to set password and temporarily shorten its lifespan.

---
 localpasswdset | 79 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 79 insertions(+)
 create mode 100755 localpasswdset

(limited to 'localpasswdset')

diff --git a/localpasswdset b/localpasswdset
new file mode 100755
index 0000000..39a8d12
--- /dev/null
+++ b/localpasswdset
@@ -0,0 +1,79 @@
+#!/bin/sh
+
+# $Id: localpasswdset,v 1.1 2006-05-08 09:13:15 jonas Exp $
+#
+# Copyright © 2006 Jonas Smedegaard <dr@jones.dk>
+# Description: Set or reset a user account password
+#
+# This program is free software; you can redistribute it and/or
+# modify it under the terms of the GNU General Public License as
+# published by the Free Software Foundation; either version 2, or (at
+# your option) any later version.
+#
+# This program is distributed in the hope that it will be useful, but
+# WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+# General Public License for more details.
+
+set -e
+
+MAXDAYSTEMP="30"
+WARNDAYSTEMP="14"
+
+PRG="`basename $0`"
+
+user="$1"
+
+# Reuse system defaults from adduser
+if [ -e /etc/adduser.conf ]; then
+	. /etc/adduser.conf
+else
+	echo 2> "Error: /etc/adduser.conf missing!"
+	exit 1
+fi
+
+# Allow overriding defaults
+if [ -e /etc/local/users.conf ]; then
+	. /etc/local/users.conf
+fi
+
+# Integrity check of user
+uid="`getent passwd \"$user\" | awk -F: '{print $3}'`"
+uidcount="`echo "$uid" | wc --word`"
+if [ "$uidcount" -lt "1" ]; then
+	echo 2> "Error: User \"$user\" not found!"
+	exit 1
+fi
+if [ "$uidcount" -gt "1" ]; then
+	echo 2> "Error: User \"$user\" matched more than a single entry!"
+	exit 1
+fi
+if [ "$uid" -lt "$FIRST_UID" ] || [ "$uid" -gt "$LAST_UID" ]; then
+	echo 2> "Error: User ID ($uid) is outside the range of normal users ($FIRST_UID-$LAST_UID)!"
+	exit 1
+fi
+
+finger -m "$user"
+echo
+cat <<EOF
+You are about to (re)set the password of the above user.
+
+ 1. Double-check that this is indeed the correct user
+ 2. Pick a new password from the list below, and spice up with a number
+
+To abort, type a blank password (just press enter) twice
+
+Suggested new passwords (random but pronouncable):
+EOF
+gpw
+passwd "$user"
+chage -M"$MAXDAYSTEMP" -W"$WARNDAYSTEMP" "$user"
+echo
+cat <<EOF
+Password correctly (re)set!
+
+The new password lasts only "$WARNDAYSTEMP" days, so instruct user to
+change it soon!
+EOF
+
+exit 0
-- 
cgit v1.2.3