修改用户密码
- 自己只能修改自己的,除了 root 外
- 自己修改直接 passwd,root 修改加用户名
1.命令格式
passwd [选项] 用户名
选项
[root@VM-0-7-centos ~]# passwd --help
Usage: passwd [OPTION...] <accountName>
-k, --keep-tokens keep non-expired authentication tokens
-d, --delete delete the password for the named account (root only)
-l, --lock lock the password for the named account (root only)
-u, --unlock unlock the password for the named account (root only)
-e, --expire expire the password for the named account (root only)
-f, --force force operation
-x, --maximum=DAYS maximum password lifetime (root only)
-n, --minimum=DAYS minimum password lifetime (root only)
-w, --warning=DAYS number of days warning users receives before password expiration (root only)
-i, --inactive=DAYS number of days after password expiration when an account becomes disabled (root only)
-S, --status report password status on the named account (root only)
--stdin read new tokens from stdin (root only)
Help options:
-?, --help Show this help message
--usage Display brief usage message
[root@localhost ~] # passwd [选项] 用户名
选项:
-S: 查询用户密码的状态,也就是/etc/shadow文件中的内容。仅root用户可用
-l: 暂时锁定用户。仅root用户可用
-u: 解锁用户。仅root用户可用
--stdin: 可以将通过管道符输出的数据作为用户的密码。主要在批量添加用户时使用
[root@localhost ~]# passwd
#passwd直接回车代表修改当前用户的密码
2.root 用户修改密码
下面举几个例子,我们给新用户 handsome 设定密码,让 handsome 用户可以登录系统。
[root@VM-0-7-centos ~]# passwd handsome
Changing password for user handsome.
New password:
BAD PASSWORD: The password is shorter than 8 characters
Retype new password:
passwd: all authentication tokens updated successfully.
作为演示,密码设的随意,所以他说这是不好的密码
3.普通用户修改密码
那么我们看看普通用户lamp是如何修改密码的。
[handsome@VM-0-7-centos ~]$ whoami
handsome
[handsome@VM-0-7-centos ~]$ passwd beauty1
passwd: Only root can specify a user name.
[handsome@VM-0-7-centos ~]$ passwd
Changing password for user handsome.
Changing password for handsome.
(current) UNIX password:
New password:
如果不是 root 用户,只能使用“passwd”来修改自己的密码,而不能使用“passwd 用户名”的方式。
如果是root用户,则建议用“passwd 用户名”的方式来修改密码。
4.查看用户密码状态
例子3:
[root@VM-0-7-centos ~]# passwd -S handsome
#用户名 密码设定时间(2021-08-19)密码修改间隔时间(0) 密码有效期(99999)警告时间(7) 密码不失效(-1)
handsome PS 2021-08-19 0 99999 7 -1 (Password set, MD5 crypt.)
5.锁定和解锁用户
锁定
[root@VM-0-7-centos ~]# passwd -l handsome
Locking password for user handsome.
passwd: Success
[root@VM-0-7-centos ~]# passwd -S handsome
handsome LK 2021-08-19 0 99999 7 -1 (Password locked.)
[root@VM-0-7-centos ~]# grep "handsome" /etc/shadow
handsome:!!$1$3QkFgKy5$9PDoRTPrJjIyJviyIm2f6.:18858:0:99999:7:::
锁定用户其实就是给密码前面加 !! ,让密码失效。
解锁
[root@VM-0-7-centos ~]# passwd -S handsome
handsome LK 2021-08-19 0 99999 7 -1 (Password locked.)
[root@VM-0-7-centos ~]# passwd -u handsome
Unlocking password for user handsome.
passwd: Success
[root@VM-0-7-centos ~]# passwd -S handsome
handsome PS 2021-08-19 0 99999 7 -1 (Password set, MD5 crypt.)
[root@VM-0-7-centos ~]# grep "handsome" /etc/shadow
handsome:$1$3QkFgKy5$9PDoRTPrJjIyJviyIm2f6.:18858:0:99999:7:::
解锁就是将密码前面的 !! 去掉了