tag:blogger.com,1999:blog-5943116203224998184.post5492248881460758406..comments2022-03-30T02:35:17.755-07:00Comments on Smart scripts to easy System Admin tasks: Striping starting and trailing character of each line in a fileAshok Rajhttp://www.blogger.com/profile/11343855629106603374noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-5943116203224998184.post-6159067120770564762016-04-14T15:59:27.759-07:002016-04-14T15:59:27.759-07:00need help
need help<br />Anonymoushttps://www.blogger.com/profile/03043114916978305778noreply@blogger.comtag:blogger.com,1999:blog-5943116203224998184.post-7564092463441061512016-04-14T15:59:02.718-07:002016-04-14T15:59:02.718-07:00My /etc/pam.d/system-auth-ac has the below auth pa...My /etc/pam.d/system-auth-ac has the below auth parameters set:<br /><br />auth required pam_env.so<br />auth sufficient pam_fprintd.so<br />auth sufficient pam_unix.so nullok try_first_pass<br />auth requisite pam_succeed_if.so uid >= 500 quiet<br />auth required pam_deny.so<br /><br />account required pam_unix.so<br />account sufficient pam_localuser.so<br />account sufficient pam_succeed_if.so uid < 500 quiet<br />account required pam_permit.so<br /><br />password required pam_cracklib.so retry=3 minlen=12 difok=4<br />password required pam_unix.so md5 remember=12 use_authtok<br />#password requisite pam_cracklib.so try_first_pass retry=3 type=<br />#password sufficient pam_unix.so md5 shadow nullok try_first_pass use_authtok<br />password required pam_deny.so<br /><br />session optional pam_keyinit.so revoke<br />session required pam_limits.so<br />session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid<br />session required pam_unix.so<br /><br /><br /><br /><br /><br /><br /><br /><br />I want to edit highlighted lines from the file by using function.<br />auth required pam_env.so<br />auth required pam_tally2.so onerr=fail file=/var/log/faillog deny=6 unlock_time=3600<br />auth sufficient pam_fprintd.so<br />auth sufficient pam_unix.so nullok try_first_pass<br />auth requisite pam_succeed_if.so uid >= 500 quiet<br />auth required pam_deny.so<br />account required pam_unix.so<br />account required pam_tally2.so file=/var/log/faillog<br />account sufficient pam_localuser.so<br />account sufficient pam_succeed_if.so uid < 500 quiet<br />account required pam_permit.so<br />password requisite pam_cracklib.so try_first_pass retry=3 minlen=8 lcredit=-1 dcredit=1 difok=4 maxrepeat=2 ocredit=1 ucredit=1<br />password sufficient pam_unix.so shadow try_first_pass use_authtok remember=6<br />password required pam_deny.so <br /><br />session optional pam_keyinit.so revoke<br />session required pam_limits.so<br />session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid<br />session required pam_unix.so<br />Function used to edit lines from script: shows error, we also need to add all lines in this function. <br />#! /bin/bash<br /><br />grep "pam_tally2" /etc/pam.d/system-auth-ac &> /dev/null<br />if [ $? -ne 0 ];<br />then<br /> sed -i '/^[ ]*auth[ ]*required[ ]*pam_env.so/aauth\trequired\tpam_tally2.so onerr=failfile=/var/log/failog deny=6 unlock_time=3600' /etc/pam.d/system-auth-ac<br /> else<br /> sed -i 's/.*pam_tally2.*/auth\trequired\tpam_tally2.so onerr=failfile=/var/log/faillog deny=6 unlock_time=3600/1' /etc/pam.d/system-auth-ac<br />fi<br />My task is to edit these lines from pam.d/system/auth-ac file<br />pam_tally2.so onerr=fail file=/var/log/faillog deny=6 unlock_time=3600<br />account required pam_tally2.so file=/var/log/faillog<br />password requisite pam_cracklib.so try_first_pass retry=3 minlen=8 lcredit=-1 dcredit=1 difok=4 maxrepeat=2 ocredit=1 ucredit=1<br />password sufficient pam_unix.so shadow try_first_pass use_authtok remember=6<br /><br /><br /><br />Anonymoushttps://www.blogger.com/profile/03043114916978305778noreply@blogger.com