pwpattern(4) pwpattern(4)
NAME
pwpattern - release for global users
SYNOPSIS
/var/yp/pwpattern
DESCRIPTION
You can use the pwpattern file to specify whether the updating of cer-
tain fields in the files /etc/passwd and /etc/shadow is to be influ-
enced by the global user name. pwpattern is only evaluated if the GLO-
BALPW variable in the file /etc/default/inet is set to "yes" or auto
and the appropriate global user name has been activated on the NIS
master with the ryptrans(1M) command.
Each line in the pwpattern file must have the following format:
user:password:UID:GID:comment:HOME-directory:Shell
user is either
- a global user name
- the character "*"
comment relates to the corresponding field in the /etc/shadow file.
The value assigned to this field is either "yes" or "no".
HOME-directory
relates to the corresponding field in the /etc/shadow file.
The value assigned to this field is either "yes" or "no".
password relates to the corresponding field in the /etc/shadow file.
The value assigned to this field is either "yes" or "no".
Shell relates to the corresponding field in the /etc/shadow file.
The value assigned to this field is either "yes" or "no", or
# any comments up to end of line.
The # character introduces a comment that terminates at the
end of the line.
The pwpattern file is evaluated line by line starting at the top.
Evaluation is terminated when no more lines exist or a line containing
the character "*" as the user entry is encountered. Comment lines are
ignored.
If the user entry is a global user name, all other entries in this
line are valid for this user name only.
Page 1 Reliant UNIX 5.44 Printed 11/98
pwpattern(4) pwpattern(4)
The "*" character instead of a global user name regulates the
overwrite rights of all users not explicitly listed in the body of the
file.
The effect of the values "yes" and "no" depend on the context in which
pwpattern is used:
If the GLOBALPW variable in the /etc/default/inet file is set to "yes"
and the yptrans daemon is running on this host, the data transferred
by the network administrator is written to the /etc/passwd files.
EXAMPLES
The pwpattern contains the following entries:
chris:YES:UID:GID:NO:YES:NO
*:YES:UID:GID:NO:NO:NO
The ryptrans command can be used to change the password and the home
directory of the user chris.
If the GLOBALPW variable in the /etc/default/inet file has been set to
"auto" and a global user is being included for the first time, "NO" in
the following fields in pwpattern mean
password the (encoded) user password is "*yp*"
comment "*NIS*" is entered in the comment field in /etc/passwd
Shell the login shell of the user is /sbin/sh
HOME-directory
the user is assigned /tmp as his/her home directory.
In all above fields a global user is not accepted
"YES" in /var/yp/pwpattern forces acceptance of the global values with
the following differences:
- A very high value in the fourth entry of the local /etc/shadow file
prevents global users from changing their passwords locally by cal-
ling passwd. It is necessary to prevent this, because the encoded
password is overwritten with the global encoded password every hour
when ypxfr1hour is called.
- The global shell is accepted only if it is locally available; oth-
erwise /sbin/sh is entered.
- If the HOME directory entered in the passwd NIS file does not exist
on this host, /tmp is entered as the HOME directory in the local
/etc/passwd file.
Page 2 Reliant UNIX 5.44 Printed 11/98
pwpattern(4) pwpattern(4)
FILES
/etc/passwd
/etc/default/inet
/etc/shadow
SEE ALSO
ryptrans(1M), inet(4).
Page 3 Reliant UNIX 5.44 Printed 11/98