Search all pages
Professions, Sciences, Humanities, Business, ...
Text-based, GUI, Audio, Video, Keyboards, Mouse, Images,...
Conversions, tests, processing, manipulation,...
Integer, Floating point, Matrix, Statistics, Boolean, ...
Algorithms, Memory, Process control, Debugging, ...
Data storage, Integrity, Encryption, Compression, ...
Networks, protocols, Interprocess, Remote, Client Server, ...
Timing, Calendar and Clock, Audio, Video, Printer, Controls...
Management, Filtering, File & Directory access, Viewers, ...
RocketLink!--> Man page versions:
PASSWD(1) OpenBSD Reference Manual PASSWD(1)
passwd - modify a user's password
passwd [-l] [-y] [-k] [-n name] [-i instance] [-r realm] [-u
passwd changes the user's local, Kerberos, or YP password. First, the
user is prompted for their current password. If the current password is
correctly typed, a new password is requested. The new password must be
entered twice to avoid typing errors.
The new password should be at least six characters long and not purely
alphabetic. Its total length must be less than _PASSWORD_LEN (currently
128 characters). Numbers, upper case letters and meta-characters are en-
-l Causes the password to be updated only in the local password file.
When changing only the local password, pwd_mkdb(8) is used to up-
date the password databases.
-y Forces the YP password database entry to be changed, even if the
user has an entry in the local database. The rpc.yppasswdd(8) dae-
mon should be running on the YP master server.
-k Forces the change to affect the Kerberos database, even if the user
has a password in the local database. Once the password has been
verified, passwd communicates the new password information to the
Kerberos authenticating host.
The following flags are only used when the -k flag is specified:
Specifies a name that will be used as the principal name rather
than the username of the user running passwd. (This is determined
from the ticket file if it exists; otherwise, it is determined
from the Unix user ID.)
Specifies an instance to use rather than a null instance.
Specifies a realm instead of the local realm.
Specifies a fully qualified kerberos principal.
This is the behavior if no flags are specified: if Kerberos is active
then passwd will talk to the Kerberos server (even if the user has an en-
try in the local database). If the password is not in the local password
database, then an attempt is made to use the YP database.
To change another user's Kerberos password, one must first run kinit(1)
followed by passwd(1). The super-user is not required to provide a us-
er's current password if only the local password is modified.
Which type of cipher is used to encrypt the password information depends
on the configuration in passwd.conf(5). It can be different for local
and YP passwords.
/etc/master.passwd user database
/etc/passwd a Version 7 format password file
/etc/passwd.XXXXXX temporary copy of the password file
/etc/passwd.conf configuration options
chpass(1), kerberos(1), kinit(1), login(1), passwd(5),
passwd.conf(5), kpasswdd(8), pwd_mkdb(8), vipw(8)
Robert Morris, and Ken Thompson, UNIX password security.
A passwd command appeared in Version 6 AT&T UNIX.
OpenBSD 2.6 July 24, 1991 2
Source: OpenBSD 2.6 man pages. Copyright: Portions are copyrighted by BERKELEY
SOFTWARE DESIGN, INC., The Regents of the University of California, Massachusetts
Institute of Technology, Free Software Foundation, FreeBSD Inc., and others.
(Corrections, notes, and links courtesy of RocketAware.com)
FreeBSD Sources for passwd(1)
OpenBSD sources for passwd(1)
Up to: Identity Authentication - verifying the identity of the originator of a connection (passwords, radius, identd, crypto methods, et al.)
Up to: Process Limits: Identity - Process ownership and Identity
Up to: Keyboard Interfaces
RocketLink!--> Man page versions:
Search | About | Comments | Submit Path: RocketAware >
RocketAware.com is a service of Mib Software
Copyright 1999, Forrest J. Cavalier III. All Rights Reserved.
We welcome submissions and comments