[prev in list] [next in list] [prev in thread] [next in thread] 

List:       gentoo-dev
Subject:    Re: [gentoo-dev] locking user accounts doesn't really lock them.
From:       Kurt Lieber <klieber () gentoo ! org>
Date:       2003-10-31 22:18:42
[Download RAW message or body]


On Fri, Oct 31, 2003 at 05:01:17PM -0500 or thereabouts, Kurt Lieber wrote:
> Ideally, there is one simple way of *completely* locking out a user from a
> machine, short of deleting their entry in /etc/(passwd|shadow)

As was just pointed out to me on irc, expiring the account, as opposed to
locking the password, will do what I want.  So:

usermod -e 0000-00-00 <user>

I still think SSH should find a way to check/respect the ! character in
passwd fields, but for now, I can at least use this as a workaround.

--kurt

[Attachment #3 (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]