编程小贴士

给你的编程提供小点子


Linux如何批量修改密码

最近管理的一批机器,有个需求是要统一修改一个帐号的用户名密码,比如将qa帐号的密码改为1234,后来还为了脚本化,很方便的执行,还使用了非交互式地修改用户的密码。简单记录一下吧。

第一种方式: 交互式配置本地用户的密码:passwd 命令

[root@host_221-81 ~]# passwd qa
Changing password for user qa.
New password:
BAD PASSWORD: it is too short
BAD PASSWORD: is too simple
Retype new password:
passwd: all authentication tokens updated successfully.

 

第二种方式:非交互式修改本地用户的密码:chpasswd

# chpasswd命令使用起来很简洁[root@host_221-81 ~]# echo “qa:1234″ | chpasswd

# 使用passwd命令,也可以实现非交互式修改密码[root@host_221-81 ~]# echo “1234” | passwd –stdin “qa”
Changing password for user qa.
passwd: all authentication tokens updated successfully.

第三种方式:使用expect来处理交互式输入,从而实现非交互式的密码修改。
!/bin/sh# \exec expect -f”$0″”$@”if{$argc!= 2}{puts “Usage: $argv0 “exit1}set password [lindex $argv1]
spawn passwd[lindex $argv0]sleep1
expect “assword:”
send “$password\r”
expect “assword:”
send “$password\r”
expect eof

注 意:脚本的第二行,这种写法可能比较陌生,这是在TCL语言中的语法,The backslash is recognized as part of a comment to sh, but in Tcl the backslash continues the comment into the next line which keeps the exec command from executing again.

该脚本的执行结果为:

[root@smilejay ~]# ./change-pwd-expect.sh qa 1234
spawn passwd qa
Changing password for user qa.
New password:
BAD PASSWORD: it is too short
BAD PASSWORD: is too simple
Retype new password:
passwd: all authentication tokens updated successfully.

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>