user account without password
Net Llama!
netllama
Mon May 17 11:56:45 PDT 2004
On Thu, 11 Dec 2003, M.W. Chang wrote:
> how could I create a user account that doesn't need a password to login?
>
> The special account will not have an interactive shell, just run a script.
>
> I only knew that I need to temper with /etc/pam.d/login,
>
> password required pam_pwdb.so nullok
Leave the password hash in /etc/shadow empty. This is still a very bad
idea. Even if the account doesn't need a shell, i don't see why it
shouldn't have a password. In many cases, the first step to a root
exploit is getting acces to an account, and then using the exploit.
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Lonni J Friedman netllama at linux-sxs.org
Linux Step-by-step & TyGeMo http://netllama.ipfox.com
More information about the Linux-users
mailing list