OK, I really appreciate the time and help of all you guys... got good tips! Anyway let me tell you that webmin allow to define webmin groups/users in order to give them granular access to specific modules, in this case only the "system - change password" option. So there is no way the user change what he must not (or what you allow them to do) I came here because I posted the question in samba and even webmin lists with no success, and anywhere you can find someone that can helps in linux world^^ Sorry if maybe I asked the wrong question in the wrong list or somebody wasted time reading or researching about this post.
Regards,
--Ivan.
"Look both ways before crossing the Net"
-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of David Ellsmore Sent: Friday, September 29, 2006 7:40 AM To: CentOS mailing list Subject: Re: [CentOS] Changing system users pass via webmin
Craig White wrote:
On Fri, 2006-09-29 at 05:20 +0100, David Ellsmore wrote:
Ivan Arteaga wrote:
Hi List,
I need my users to change their passwords, so I defined them as webmin
users
and gived them access only to the system/change password option to do
so. So
far so good... they changed their system passwords (in order to access email) but the change it's not reflected in samba passwords. I defined
the
option change password in other modules in webmin but it doesn't works,
I
also have in the smb.conf "unix password sync = yes" but the same. I will appreciate if somebody can give me an idea about how to ride
this, or
maybe using another app? o_0
Thanks in advance.
--Ivan.
This is not CentOS related.....you'd get some/any/better answers in a Samba list.....but I'll try to give you a few pointers anyhow....
http://www.rhce2b.com/clublinux/RHCE-27.shtml
Read the above - it suggests that the Unix password is "synced" with Samba - not as you seem to be wanting to do (Samba with Unix).
AFAIK Samba holds its passwords in /etc/samba/smbpasswd - you may need to use the "convert Unix users to Samba users option" or consider using a different user authentication method to configure a system wide password for your users. I can't remember if the "user conversion" includes the passwords....you'll have to try it and find out! :-)
Insofar as allowing user access to Webmin, I think this is a *bad* idea
- the words "shoot", "self" and "foot" come to mind.....it may be
perfectly safe to do but my gut feeling is that Webmin is much too much dangerous to allow "Joe Q. User" any access to it at all.
just some commentary because it appears that you are not very well versed on webmin...
webmin has an associate called usermin and it is designed for users to interact including changing their password, read their e-mail, create fetchmail connections, etc. I don't use it though. It is safe to allow standard user accounts to access it.
webmin in various configurations is capable of simultaneously changing shadow & samba passwords - sort of how samba has "Unix sync password" in reverse.
While I always use LDAP, I don't think that the OP was necessarily headed in the wrong direction.
Craig
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
I am very well versed - I have both Webmin and Usermin and I *do* use them - the question did not belong here so I tried to (politely) steer the OP away in the right direction (and to do some research).
They're tools that I'd rather not let users have access to.....anyhow, that's just my paranoid side showing.....longer experience than I care to remember (or admit to!) has taught me that *some* users will fiddle around with stuff they don't understand.....and then I get blamed when it's broke!
If you look at the time on my original reply you'll see it was made at 05:20 BST......I wasn't exactly wide awake at the time as I was only on my 1st coffee and so only one of my two brain cells was working! :-) _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos