[CentOS] Changing system users pass via webmin

Ivan Arteaga iarteaga at cwpanama.net
Fri Sep 29 12:52:51 UTC 2006 

OK, I really appreciate the time and help of all you guys... got good tips!
Anyway let me tell you that webmin allow to define webmin groups/users in
order to give them granular access to specific modules, in this case only
the "system - change password" option. So there is no way the user change
what he must not (or what you allow them to do)
I came here because I posted the question in samba and even webmin lists
with no success, and anywhere you can find someone that can helps in linux
world^^
Sorry if maybe I asked the wrong question in the wrong list or somebody
wasted time reading or researching about this post.

Regards,

--Ivan. 


 

"Look both ways before crossing the Net" 


-----Original Message-----
From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On Behalf
Of David Ellsmore
Sent: Friday, September 29, 2006 7:40 AM
To: CentOS mailing list
Subject: Re: [CentOS] Changing system users pass via webmin

Craig White wrote:
> On Fri, 2006-09-29 at 05:20 +0100, David Ellsmore wrote:
>   
>> Ivan Arteaga wrote:
>>     
>>> Hi List,
>>>
>>> I need my users to change their passwords, so I defined them as webmin
users
>>> and gived them access only to the system/change password option to do
so. So
>>> far so good... they changed their system passwords (in order to access
>>> email) but the change it's not reflected in samba passwords. I defined
the
>>> option change password in other modules in webmin but it doesn't works,
I
>>> also have in the smb.conf "unix password sync = yes" but the same.
>>> I will appreciate if somebody can give me an idea about how to ride
this, or
>>> maybe using another app? o_0
>>>
>>> Thanks in advance.
>>>
>>> --Ivan. 
>>>
>>>   
>>>       
>> This is not CentOS related.....you'd get some/any/better answers in a 
>> Samba list.....but I'll try to give you a few pointers anyhow....
>>
>> http://www.rhce2b.com/clublinux/RHCE-27.shtml
>>
>> Read the above - it suggests that the Unix password is "synced" with 
>> Samba - not as you seem to be wanting to do (Samba with Unix).
>>
>> AFAIK Samba holds its passwords in /etc/samba/smbpasswd - you may need 
>> to use the "convert Unix users to Samba users option" or consider using 
>> a different user authentication method to configure a system wide 
>> password for your users. I can't remember if the "user conversion" 
>> includes the passwords....you'll have to try it and find out! :-)
>>
>> Insofar as allowing user access to Webmin, I think this is a *bad* idea 
>> - the words "shoot", "self" and "foot" come to mind.....it may be 
>> perfectly safe to do but my gut feeling is that Webmin is much too much 
>> dangerous to allow "Joe Q. User" any access to it at all.
>>     
> ----
> just some commentary because it appears that you are not very well
> versed on webmin...
>
> webmin has an associate called usermin and it is designed for users to
> interact including changing their password, read their e-mail, create
> fetchmail connections, etc. I don't use it though. It is safe to allow
> standard user accounts to access it.
>
> webmin in various configurations is capable of simultaneously changing
> shadow & samba passwords - sort of how samba has "Unix sync password" in
> reverse.
>
> While I always use LDAP, I don't think that the OP was necessarily
> headed in the wrong direction.
>
> Craig
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
>   
I am very well versed - I have both Webmin and Usermin and I *do* use 
them - the question did not belong here so I tried to (politely) steer 
the OP away in the right direction (and to do some research).

They're tools that I'd rather not let users have access to.....anyhow, 
that's just my paranoid side showing.....longer experience than I care 
to remember (or admit to!) has taught me that *some* users will fiddle 
around with stuff they don't understand.....and then I get blamed when 
it's broke!

If you look at the time on my original reply you'll see it was made at 
05:20 BST......I wasn't exactly wide awake at the time as I was only on 
my 1st coffee and so only one of my two brain cells was working! :-)
_______________________________________________
CentOS mailing list
CentOS at centos.org
http://lists.centos.org/mailman/listinfo/centos

More information about the CentOS mailing list