[CentOS] Changing system users pass via webmin

David Ellsmore dellsmore at vodafone.ie
Fri Sep 29 12:39:58 UTC 2006 

Craig White wrote:
> On Fri, 2006-09-29 at 05:20 +0100, David Ellsmore wrote:
>   
>> Ivan Arteaga wrote:
>>     
>>> Hi List,
>>>
>>> I need my users to change their passwords, so I defined them as webmin users
>>> and gived them access only to the system/change password option to do so. So
>>> far so good... they changed their system passwords (in order to access
>>> email) but the change it's not reflected in samba passwords. I defined the
>>> option change password in other modules in webmin but it doesn't works, I
>>> also have in the smb.conf "unix password sync = yes" but the same.
>>> I will appreciate if somebody can give me an idea about how to ride this, or
>>> maybe using another app? o_0
>>>
>>> Thanks in advance.
>>>
>>> --Ivan. 
>>>
>>>   
>>>       
>> This is not CentOS related.....you'd get some/any/better answers in a 
>> Samba list.....but I'll try to give you a few pointers anyhow....
>>
>> http://www.rhce2b.com/clublinux/RHCE-27.shtml
>>
>> Read the above - it suggests that the Unix password is "synced" with 
>> Samba - not as you seem to be wanting to do (Samba with Unix).
>>
>> AFAIK Samba holds its passwords in /etc/samba/smbpasswd - you may need 
>> to use the "convert Unix users to Samba users option" or consider using 
>> a different user authentication method to configure a system wide 
>> password for your users. I can't remember if the "user conversion" 
>> includes the passwords....you'll have to try it and find out! :-)
>>
>> Insofar as allowing user access to Webmin, I think this is a *bad* idea 
>> - the words "shoot", "self" and "foot" come to mind.....it may be 
>> perfectly safe to do but my gut feeling is that Webmin is much too much 
>> dangerous to allow "Joe Q. User" any access to it at all.
>>     
> ----
> just some commentary because it appears that you are not very well
> versed on webmin...
>
> webmin has an associate called usermin and it is designed for users to
> interact including changing their password, read their e-mail, create
> fetchmail connections, etc. I don't use it though. It is safe to allow
> standard user accounts to access it.
>
> webmin in various configurations is capable of simultaneously changing
> shadow & samba passwords - sort of how samba has "Unix sync password" in
> reverse.
>
> While I always use LDAP, I don't think that the OP was necessarily
> headed in the wrong direction.
>
> Craig
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
>   
I am very well versed - I have both Webmin and Usermin and I *do* use 
them - the question did not belong here so I tried to (politely) steer 
the OP away in the right direction (and to do some research).

They're tools that I'd rather not let users have access to.....anyhow, 
that's just my paranoid side showing.....longer experience than I care 
to remember (or admit to!) has taught me that *some* users will fiddle 
around with stuff they don't understand.....and then I get blamed when 
it's broke!

If you look at the time on my original reply you'll see it was made at 
05:20 BST......I wasn't exactly wide awake at the time as I was only on 
my 1st coffee and so only one of my two brain cells was working! :-)

More information about the CentOS mailing list