File Formats dpasswd(4)
NAME
dpasswd - dial-up password file
SYNOPSIS
/etc/dpasswd
DESCRIPTION
A dial-up password is an additional password required of
users who access the computer through a modem or dial-up
port. The correct password must be entered before the user
is granted access to the computer.
dpasswd is an ASCI file which contains a list of execut-
able programs (typically shells) that require a dial-up
password and the associated encrypted passwords. When a user
attempts to log in on any of the ports listed in the dialups
file (see dialups(4)), the login program looks at the user's
login entry stored in the passwd file (see passwd(4)), and
compares the login shell field to the entries in dpasswd.
These entries determine whether the user will be required to
supply a dial-up password.
Each entry in dpasswd is a single line of the form:
login-shell:password:
where
login-shell The name of the login program that will
require an additional dial-up password.
password An encrypted password. Users accessing the
computer through a dial-up port or modem
using login-shell will be required to enter
this password before gaining access to the
computer.
dpasswd should be owned by the root user and the root
group. The file should have read and write permissions for
the owner (root) only.
SunOS 5.11 Last change: 2 Sep 2004 1
File Formats dpasswd(4)
If the user's login program in the passwd file is not found
in dpasswd or if the login shell field in passwd is empty,
the user must supply the default password. The default pass-
word is the entry for /usr/bin/sh. If dpasswd has no entry
for /usr/bin/sh, then those users whose login shell field in
passwd is empty or does not match any entry in dpasswd will
not be prompted for a dial-up password.
Dial-up logins are disabled if dpasswd has only the follow-
ing entry:
/usr/bin/sh:*:
EXAMPLES
Example 1 Sample dpasswd file.
Here is a sample dpasswd file:
/usr/lib/uucp/uucico:q.mJzTnu8icF0:
/usr/bin/csh:6k/7KCFRPNVXg:
/usr/bin/ksh:9df/FDf.4jkRt:
/usr/bin/sh:41FuGVzGcDJlw:
Generating An Encrypted Password
The passwd (see passwd(1)) utility can be used to generate
the encrypted password for each login program. passwd gen-
erates encrypted passwords for users and places the password
in the shadow (see shadow(4)) file. Passwords for the
dpasswd file will need to be generated by first adding a
temporary user id using useradd (see useradd(1M)), and then
using passwd(1) to generate the desired password in the sha-
dow file. Once the encrypted version of the password has
been created, it can be copied to the dpasswd file.
For example:
1. Type useradd tempuser and press Return. This
creates a user named tempuser.
2. Type passwd tempuser and press Return. This creates
an encrypted password for tempuser and places it in
the shadow file.
3. Find the entry for tempuser in the shadow file and
SunOS 5.11 Last change: 2 Sep 2004 2
File Formats dpasswd(4)
copy the encrypted password to the desired entry in
the dpasswd file.
4. Type userdel tempuser and press Return to delete
tempuser.
These steps must be executed as the root user.
FILES
/etc/dpasswd dial-up password file
/etc/dialups list of dial-up ports requiring dial-up
passwords
/etc/passwd password file
/etc/shadow shadow password file
SEE ALSO
passwd(1), useradd(1M), dialups(4), passwd(4), shadow(4)
WARNINGS
When creating a new dial-up password, be sure to remain
logged in on at least one terminal while testing the new
password. This ensures that there is an available terminal
from which you can correct any mistakes that were made when
the new password was added.
SunOS 5.11 Last change: 2 Sep 2004 3
|
