#!/bin/bash
# Author:韩伟
# Date: 2019-12-29
# 实现对用户密码策略的设定,如密码最长有效期等
date=`date +%Y-%m-%d`
read -p "是否设置密码策略[y/n]:" Y
if [ "$Y" == "y" ];then
read -p "设置密码最多可多少天不修改:" A
read -p "设置密码修改之间最小的天数:" B
read -p "设置密码最短的长度:" C
read -p "设置密码失效前多少天通知用户:" D
cp /etc/login.defs /etc/login.defs.${
date}
sed -i '/^PASS_MAX_DAYS/c\PASS_MAX_DAYS '$A'' /etc/login.defs
sed -i '/^PASS_MIN_DAYS/c\PASS_MIN_DAYS '$B'' /etc/login.defs
sed -i '/^PASS_MIN_LEN/c\PASS_MIN_LEN '$C'' /etc/login.defs
sed -i '/^PASS_WARN_AGE/c\PASS_WARN_AGE '$D'' /etc/login.defs
else
break
fi
echo "已设置好密码策略......"
read -p "是否设置密码强度[y/n]:" Y
if [ "$Y" == "y" ];then
read -p "定义新密码中必须要有几个字符和旧密码不同:" AA
read -p "设置新密码的最小长度:" BB
read -
Linux 基线检查,安全加固脚本
最新推荐文章于 2024-08-21 10:29:54 发布