在上篇博文中主要提到了useradd、userdel 和usermod 三个命令。在使用这些命令的时候,系统除了执行这些命令的参数外,还要参考系统一些默认的配置文件。这篇博文主要来分析者几个命令执行时所要依据的默认配置文件。
下面看看/etc/default/useradd文件:
- [huang@myhost/default]$ ls -l /etc/default/useradd
-
-rw-r--r-- 1 root root 158 Feb 28 2010 /etc/default/useradd
再看看该文件内容:
- [huang@myhost/default]$ vim ./useradd
-
# useradd defaults file for ArchLinux
-
# original changes by TomK
-
GROUP=100
-
HOME=/home ## 将新建用户home目录至于/home下
-
INACTIVE=-1 ## 是否启用账号过期停权,-1表示不启用,0及以下数字皆为无效数字
-
EXPIRE= ## 账号的终止日期,不设置表示不启用;如果启用,可以设置为:20121221
-
SHELL=/bin/bash ## 新建账户默认使用的shell
-
SKEL=/etc/skel ## 新建用户home目录中环境文件拷贝源,即是从/etc/skel/目录中拷贝到新建用户home目录
-
CREATE_MAIL_SPOOL=no ## 不创建用户mail文件夹 (/var/spool/mail/)
详细解释看后面注释;
再来看另外一个非常重要的文件:/etc/login.defs
- #QMAIL_DIR Maildir
-
MAIL_DIR /var/spool/mail ## mail 默认目录
-
# *REQUIRED* The default PATH settings, for superuser and normal users.
-
# (they are minimal, add the rest in the shell startup files)
-
ENV_SUPATH PATH=/sbin:/bin:/usr/sbin:/usr/bin ## 超级用户默认PATH
-
ENV_PATH PATH=/bin:/usr/bin ## 普通环境变量(PATH)
-
# Password aging controls:
-
#
-
# PASS_MAX_DAYS Maximum number of days a password may be used.
-
# PASS_MIN_DAYS Minimum number of days allowed between password changes.
-
# PASS_WARN_AGE Number of days warning given before a password expires.
-
#
-
PASS_MAX_DAYS 99999 ## 密码过期最大期限,对应/etc/password每一行第五字段
-
PASS_MIN_DAYS 0 ## 拒绝修改密码的最小时间
-
PASS_WARN_AGE 7 ## 密码过期提前提醒天数,即在密码到期前7天给出提醒
-
-
# Min/max values for automatic uid selection in useradd
-
#
-
UID_MIN 1000 ## 用户uid最小值
-
UID_MAX 60000 ## 用户uid最大值
-
# System accounts
-
SYS_UID_MIN 500 ## 系统uid最小值
-
SYS_UID_MAX 999 ## 系统uid最大值
-
-
# Min/max values for automatic gid selection in groupadd
-
#
-
GID_MIN 1000 ## 用户组gid最小值
-
GID_MAX 60000 ## 用户组gid最大值
-
# System accounts
-
SYS_GID_MIN 500 ## 系统组gid最小值
-
SYS_GID_MAX 999 ## 系统组gid最大值
-
-
# Max number of login retries if password is bad
-
#
-
LOGIN_RETRIES 5 ## 密码错误能尝试的最大次数
-
-
# Max time in seconds for login
-
#
-
LOGIN_TIMEOUT 60 ## login时最大时间段
-
# Which fields may be changed by regular users using chfn - use
-
# any combination of letters "frwh" (full name, room number, work
-
# phone, home phone). If not defined, no changes are allowed.
-
# For backward compatibility, "yes" = "rwh" and "no" = "frwh".
-
#
-
CHFN_RESTRICT rwh
-
# Should login be allowed if we can
阅读(4851) | 评论(0) | 转发(4) |
