* man/pwck.8.xml: The shadow file is optional.
* man/pwck.8.xml: Updated description of the checks. Added description of the shadow checks. * man/pwck.8.xml: Updated description of the checks.
This commit is contained in:
nekral-guest
@@ -1,7 +1,7 @@
|
||||
<?xml version="1.0" encoding="UTF-8"?>
|
||||
<!--
|
||||
Copyright (c) 1992 , Julianne Frances Haugh
|
||||
Copyright (c) 2007 - 2008, Nicolas François
|
||||
Copyright (c) 2007 - 2009, Nicolas François
|
||||
All rights reserved.
|
||||
|
||||
Redistribution and use in source and binary forms, with or without
|
||||
@@ -70,9 +70,11 @@
|
||||
<arg choice='plain'>
|
||||
<replaceable>passwd</replaceable>
|
||||
</arg>
|
||||
<arg choice='opt'>
|
||||
<arg choice='plain'>
|
||||
<replaceable>shadow</replaceable>
|
||||
</arg>
|
||||
</arg>
|
||||
</arg>
|
||||
</cmdsynopsis>
|
||||
</refsynopsisdiv>
|
||||
@@ -81,10 +83,10 @@
|
||||
<title>DESCRIPTION</title>
|
||||
<para>
|
||||
The <command>pwck</command> command verifies the integrity of the
|
||||
system authentication information. All entries in the
|
||||
users and authentication information. It checks that all entries in
|
||||
<filename>/etc/passwd</filename> and <filename>/etc/shadow</filename>
|
||||
are checked to see that the entry has the proper format and valid data
|
||||
in each field. The user is prompted to delete entries that are
|
||||
have the proper format and contain valid data.
|
||||
The user is prompted to delete entries that are
|
||||
improperly formatted or which have other uncorrectable errors.
|
||||
</para>
|
||||
|
||||
@@ -94,7 +96,7 @@
|
||||
<para>the correct number of fields</para>
|
||||
</listitem>
|
||||
<listitem>
|
||||
<para>a unique user name</para>
|
||||
<para>a unique and valid user name</para>
|
||||
</listitem>
|
||||
<listitem>
|
||||
<para>a valid user and group identifier</para>
|
||||
@@ -110,6 +112,35 @@
|
||||
</listitem>
|
||||
</itemizedlist>
|
||||
|
||||
<para>
|
||||
<filename>shadow</filename> checks are enabled when a second file
|
||||
parameter is specified or when <filename>/etc/shadow</filename>
|
||||
exists on the system.
|
||||
</para>
|
||||
<para>
|
||||
These checks are the following:
|
||||
</para>
|
||||
<itemizedlist mark='bullet'>
|
||||
<listitem>
|
||||
<para>
|
||||
every passwd entry has a matching shadow entry, and every shadow
|
||||
entry has a matching passwd entry
|
||||
</para>
|
||||
</listitem>
|
||||
<listitem>
|
||||
<para>passwords are specified in the shadowed file</para>
|
||||
</listitem>
|
||||
<listitem>
|
||||
<para>shadow entries have the correct number of fields</para>
|
||||
</listitem>
|
||||
<listitem>
|
||||
<para>shadow entries are unique in shadow</para>
|
||||
</listitem>
|
||||
<listitem>
|
||||
<para>the last password changes are not in the future</para>
|
||||
</listitem>
|
||||
</itemizedlist>
|
||||
|
||||
<para>
|
||||
The checks for correct number of fields and unique user name are
|
||||
fatal. If the entry has the wrong number of fields, the user will be
|
||||
|
||||
Reference in New Issue
Block a user