chef - [chef] Re: Re: Removing root's password results in 'ruby-shadow not installed' error.

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Re: Re: Removing root's password results in 'ruby-shadow not installed' error.

From: Kimball Johnson < >
To:
Subject: [chef] Re: Re: Removing root's password results in 'ruby-shadow not installed' error.
Date: Wed, 4 May 2011 08:31:03 +0100

On 4 May 2011 01:46, Bryan McLellan
< >
wrote:
> On Tue, May 3, 2011 at 5:36 PM, Jason J. W. Williams
> < >
>  wrote:
>>  user "root" do
>>    action :modify
>>    password "*"
>>  end
>
> Also, there's a "lock" action.
>

You should note that locking the account and setting the hash to '*'
are quite different.  For example if you are using ssh key logins you
can allow a user to access that has no usable password (i.e. hash of
'*') but  if you lock the account the user will not be permitted to
login.

> I suppose you could set the password to "*" using the password
> attribute. Since we're normally writing directly to this field through
> the shadow library, that may work.

If you have the ruby shadow library installed the manipulation of the
hash does indeed work correctly, and leave the account enabled, but
with no usable password.

Kimball Johnson

[chef] Re: Re: Removing root's password results in 'ruby-shadow not installed' error., (continued)
- [chef] Re: Removing root's password results in 'ruby-shadow not installed' error., Jay Buffington, 05/03/2011
- [chef] Re: Removing root's password results in 'ruby-shadow not installed' error., Ian Marlier, 05/03/2011
- [chef] Re: Removing root's password results in 'ruby-shadow not installed' error., Bryan McLellan, 05/03/2011
  - [chef] Re: Re: Removing root's password results in 'ruby-shadow not installed' error., Kimball Johnson, 05/04/2011