NEWUSERS
å称
大纲
æè¿°
é项
CAVEATS
éç½®æ件
æ件
åè§
å称
newusers − æ¹éæ´æ°åå建æ°ç¨æ·
大纲
|
newusers [é项] [æ件] |
æè¿°
The newusers command reads a file (or the standard input by default) and uses this information to update a set of existing users or to create new users. Each line is in the same format as the standard password file (see passwd(5)) with the exceptions explained below:
pw_name:pw_passwd:pw_uid:pw_gid:pw_gecos:pw_dir:pw_shell
pw_name
è¿æ¯ç¨æ·çç¨æ·åã
It can be the name of a new user or the name of an existing user (or a user created before by newusers). In case of an existing user, the user’s information will be changed, otherwise a new user will be created.
pw_passwd
æ¤å段å°è¢«å å¯ç¶åç¨äºå å¯åå¯ç çæ°å¼ã
pw_uid
æ¤å段ç¨äºå®ä¹ç¨æ·ç UIDã
If the field is empty, a new (unused) UID will be defined automatically by newusers.
å¦ææ¤å段åå«ä¸ä¸ªæ°åï¼æ¤æ°åä¼ç¨äº UIDã
If this field contains the name of an existing user (or the name of a user created before by newusers), the UID of the specified user will be used.
å¦æä¸ä¸ªç°æç¨æ·æ´æ¹äº UIDï¼æ¤ç¨æ·çæ件æææéè¦æå¨ä¿®å¤ã
pw_gid
æ¤å段ç¨äºå®ä¹ç¨æ·çä¸»ç» IDã
å¦ææ¤å段åå«ä¸ä¸ªç°æç»çç»å(æè newusers å¨åè¾¹å建çä¸ä¸ªç»)ï¼æ¤ç»ç GID ä¼è¢«ç¨äºåæ¤ç¨æ·çä¸»ç» IDã
å¦ææ¤å段æ¯ä¸ä¸ªæ°åï¼æ¤æ°åä¼è¢«ç¨ä½æ¤ç¨æ·çä¸»ç» IDãå¦æ没æ对åºæ¤ GID çç°æç»ï¼å°ä¼ä½¿ç¨æ¤ GID å建ä¸ä¸ªæ°ç»ï¼å称åç¨æ·åç¸åã
å¦ææ¤å段为空ï¼å°ä¼ä½¿ç¨ç¨æ·åä½ä¸ºç»åï¼newusers èªå¨ç¡®å®çä¸ä¸ª GID ä½ä¸ºä¸»ç» ID æ¥å建ä¸ä¸ªæ°ç»ã
å¦ææ¤å段åå«ä¸ä¸ªä¸åå¨çç»çåå(ä¹æ²¡æç± newusers å¨åè¾¹å建)ï¼å°ä½¿ç¨æå®çç»åå newusers èªå¨ç¡®å®ç GID å建ä¸ä¸ªç»ï¼å¹¶ä½ä¸ºç¨æ·ç主ç»ã
pw_gecos
æ¤å段å¤å¶å°ç¨æ·ç GECOS å段ã
pw_dir
æ¤å段ç¨äºå®ä¹ç¨æ·ç主ç®å½ã
å¦ææ¤å- 段æå®çä¸æ¯ç°æçç®å½ï¼å°ä¼å建æå®çç®å½ï¼æææ设置为å建ææ´æ°çç¨æ·åå¶ä¸»ç»ã
å¦æç°æç¨æ·ç主ç®å½åæ´ï¼newusers ä¸ä¼ç§»å¨æèå¤å¶æ§ç®å½çå容å°æ°ä½ç½®ãè¿éè¦æå¨å®æã
pw_shell
æ¤å段å®ä¹äºç¨æ·ç shellã对æ¤å段ä¸è¿è¡ä»»ä½æ£æ¥ã
newusers é¦åå°è¯å建ææ´æ¹æææå®çç¨æ·ï¼ç¶åå°è¿äºæ´æ¹åå¥ç¨æ·æç»æ°æ®åºãå¦æåçé误(é¤éæ¯å¨æååå¥æ°æ®åºè¿ç¨ä¸- )ï¼ä¸ä¼æä»»ä½æ´æ¹ã
æ¤å½ä»¤ä¸è¬ç¨äºå¨å¤§åçåºç¨ç¯å¢ä¸ï¼å¯¹å¤§éè´¦æ·è¿è¡ä¸æ¬¡æ§æ´æ°ã
é项
newusers å½ä»¤å¯ä»¥ä½¿ç¨çé项æï¼
−c, −−crypt−method
使ç¨æå®çæ¹æ³å å¯å¯ç ã
å¯ç¨çæ¹æ³æ DES, MD5, NONE, and SHA256 æ SHA512ï¼åææ¯æ¨ç libc æ¯æè¿åæ¹æ³ã
−h, −−help
ç°å®å¸®å©ä¿¡æ¯å¹¶éåºã
−r, −−system
å建ä¸ä¸ªç³»ç»è´¦æ·ã
System users will be created with no aging information in /etc/shadow, and their numeric identifiers are chosen in the SYS_UID_MIN−SYS_UID_MAX range, defined in login.defs, instead of UID_MIN−UID_MAX (and their GID counterparts for the creation of groups).
−R, −−root CHROOT_DIR
Apply changes in the CHROOT_DIR directory and use the configuration files from the CHROOT_DIR directory.
−s, −−sha−rounds
使ç¨æå®æ¬¡æ°ç轮转æ¥å å¯å¯ç ã
å¼ 0 表示让系ç»ä¸ºå å¯æ¹æ³éæ©é»è®¤çè½®è½¬æ¬¡æ° (5000)ã
ä¼å¼ºå¶æå° 1,000ï¼æ大 9,9999,9999
æ¨åªå¯ä»¥å¯¹ SHA256 æ SHA512 使ç¨æ¤é项ã
é»è®¤ï¼è½®è½¬æ°ç± /etc/login.defs æ件ä¸ç SHA_CRYPT_MIN_ROUNDS å SHA_CRYPT_MAX_ROUNDS åéç¡®å®ã
CAVEATS
è¾å¥æ件å¿é¡»åå°ä¿æ¤ï¼å 为å®åå«æªå å¯çå¯ç ã
æ¨éè¦ç¡®ä¿ä½ ååå å¯æ¹æ³ç¬¦åç³»ç»çå¯ç çç¥ã
éç½®æ件
å¨ /etc/login.defs ä¸æå¦ä¸éç½®åéï¼å¯ä»¥ç¨æ¥æ´æ¹æ¤å·¥å·çè¡ä¸ºï¼
ENCRYPT_METHOD (string)
è¿å®ä¹äºç³»ç»å å¯å¯ç çé»è®¤ç®æ³(å¦æ没æå¨å½ä»¤è¡ä¸æå®ç®æ³)ã
å¯ä»¥ä½¿ç¨å¦ä¸å¼ï¼DES (default), MD5, SHA256, SHA512.
注æï¼æ¤åæ°ä¼è¦ç MD5_CRYPT_ENAB åéã
GID_MAX (number), GID_MIN (number)
useraddï¼groupadd æ newusers å建ç常è§ç»çç» ID çèå´ã
GID_MIN å GID_MAX çé»è®¤å¼åå«æ¯ 1000 å 60000ã
MAX_MEMBERS_PER_GROUP (number)
æ¯ä¸ªç»æ¡ç®çæ大æåæ°ãè¾¾å°æ大å¼æ¶ï¼å¨ /etc/group å¼å§ä¸ä¸ªæ°æ¡ç®(è¡)(使ç¨åæ ·çå称ï¼åæ ·çå¯ç ï¼åæ ·ç GID)ã
é»è®¤å¼æ¯ 0ï¼æå³çç»ä¸çæåæ°æ²¡æéå¶ã
æ¤åè½(åå²ç»)å许éå¶ç»æ件ä¸çè¡é¿åº¦ãè¿å¯¹äºç¡®ä¿ NIS ç»çè¡æ¯é¿äº 1024 å符ã
å¦æè¦å¼ºå¶è¿ä¸ªéå¶ï¼å¯ä»¥ä½¿ç¨ 25ã
注æï¼åå²ç»å¯è½ä¸åææå·¥å·çæ¯æ(çè³å¨ Shadow å·¥å·éä¸- )ãæ¨ä¸åºè¯¥ä½¿ç¨è¿ä¸ªåéï¼é¤éççéè¦ã
MD5_CRYPT_ENAB (boolean)
表示å¯ç æ¯å¦å¿é¡»ä½¿ç¨åºäº MD5 çç®æ³å å¯ãå¦æ设为 yesï¼æ°å¯ç å°ä½¿ç¨å¯ä»¥åæ°ç FreeBSD å¼å®¹çåºäº MD5 çç®æ³å å¯ãå®æ¯ææ éé¿åº¦çå¯ç 以åæ´é¿ççå- 符串ãå¦ææ¨éè¦å°å å¯çå¯ç å¤å¶å°å¶å®ä¸ç解æ°ç®æ³çç³»ç»ï¼è®¾ç½®ä¸º noãé»è®¤å¼æ¯ noã
This variable is superseded by the ENCRYPT_METHOD variable or by any command line option used to configure the encryption algorithm.
æ¤åéå·²ç»åºå¼ãæ¨åºè¯¥ä½¿ç¨ ENCRYPT_METHODã
PASS_MAX_DAYS (number)
ä¸ä¸ªå¯ç å¯ä»¥ä½¿ç¨çæ大天æ°ãå¦æå¯ç æ¯è¿æ§ï¼å°ä¼å¼ºè¿«æ´æ¹å¯ç ãå¦æä¸æå®ï¼å°±åå®ä¸º −1ï¼è¿ä¼ç¦ç¨è¿ä¸ªéå¶ã
PASS_MIN_DAYS (number)
两次æ´æ¹å¯ç æ¶é´çæå°é´éãå°ä¼æç»ä»»ä½æ©äºæ- ¤çæ´æ¹å¯ç çå°è¯ãå¦æä¸æå®ï¼åå®ä¸º −1ï¼å°ä¼ç¦ç¨è¿ä¸ªéå¶ã
PASS_WARN_AGE (number)
å¯ç è¿æä¹åç»åºè¦åç天æ°ã0 表示åªæåªå¨è¿æçå½å¤©è¦åï¼è´å¼è¡¨ç¤ºä¸è- ¦åãå¦æ没ææå®ï¼ä¸ä¼ç»è¦åã
SHA_CRYPT_MIN_ROUNDS (number), SHA_CRYPT_MAX_ROUNDS (number)
ENCRYPT_METHOD 设为 SHA256 æ SHA512 æ¶ï¼æ- ¤é¡¹ç¡®å®å å¯ç®æ³é»è®¤ä½¿ç¨ SHA 轮转æ°ç®(å½è½®è½¬æ°æ²¡æéè¿å½ä»¤è¡æå®æ¶)ã
使ç¨å¾å¤è½®è½¬ï¼ä¼è®©æ´åç ´è§£æ´å å°é¾ãä½æ¯éè¦æ³¨æï¼è®¤è¯ç¨æ·æ¶ä¹ä¼éè¦æ´å¤ç CPU èµæºã
å¦æ没ææå®ï¼libc ä¼éæ©é»è®¤ç轮转æ°(5000)ã
å¼å¿é¡»å¨ 1000 − 999,999,999 ä¹é´ã
å¦æåªè®¾ç½®äºä¸ä¸ª SHA_CRYPT_MIN_ROUNDS æ SHA_CRYPT_MAX_ROUNDS å¼ï¼å°±ä¼ä½¿ç¨è¿ä¸ªå¼ã
å¦æ SHA_CRYPT_MIN_ROUNDS > SHA_CRYPT_MAX_ROUNDSï¼å°ä¼ä½¿ç¨å¤§çé£ä¸ªã
SUB_GID_MIN (number), SUB_GID_MAX (number), SUB_GID_COUNT (number)
If /etc/subuid exists, the commands useradd and newusers (unless the user already have subordinate group IDs) allocate SUB_GID_COUNT unused group IDs from the range SUB_GID_MIN to SUB_GID_MAX for each new user.
The default values for SUB_GID_MIN, SUB_GID_MAX, SUB_GID_COUNT are respectively 100000, 600100000 and 10000.
SUB_UID_MIN (number), SUB_UID_MAX (number), SUB_UID_COUNT (number)
If /etc/subuid exists, the commands useradd and newusers (unless the user already have subordinate user IDs) allocate SUB_UID_COUNT unused user IDs from the range SUB_UID_MIN to SUB_UID_MAX for each new user.
The default values for SUB_UID_MIN, SUB_UID_MAX, SUB_UID_COUNT are respectively 100000, 600100000 and 10000.
SYS_GID_MAX (number), SYS_GID_MIN (number)
useraddãgroupadd æ newusers å建çç³»ç»ç»çç» ID çèå´ã
SYS_GID_MIN å SYS_GID_MAX çé»è®¤å¼åå«æ¯ 101 å GID_MIN−1ã
SYS_UID_MAX (number), SYS_UID_MIN (number)
useradd æ newusers å建çç³»ç»ç¨æ·çç¨æ· ID çèå´ã
SYS_UID_MIN å SYS_UID_MAX çé»è®¤å¼åå«æ¯ 101 å UID_MIN−1ã
UID_MAX (number), UID_MIN (number)
useradd æ newusers å建çæ®éç¨æ·çç¨æ· ID çèå´ã
UID_MIN å UID_MAX çé»è®¤å¼åå«æ¯ 1000 å 60000ã
UMASK (number)
æ件模å¼å建æ©ç åå§å为æ¤å¼ãå¦æ没ææå®ï¼æ©ç åå§å为 022ã
useradd å newusers 使ç¨æ¤æ©ç 设置å®ä»¬å建çç¨æ·ä¸»ç®å½ç模å¼ã
ä¹è¢« login ç¨äºæå®ç¨æ·çåå§ umaskã注æï¼æ¤æ©ç å¯ä»¥è¢«ç¨æ·ç GECOS è¡è¦ç(å½è®¾ç½®äº QUOTAS_ENAB æ¶)ï¼ä¹å¯ä»¥è¢«å¸¦ K æ示符ç limits(5) å®ä¹çéå¶å¼è¦çã
æ件
/etc/passwd
ç¨æ·è´¦æ·ä¿¡æ¯ã
/etc/shadow
å®å¨ç¨æ·è´¦æ·ä¿¡æ¯ã
/etc/group
ç»è´¦æ·ä¿¡æ¯ã
/etc/gshadow
å®å¨ç»è´¦æ·ä¿¡æ¯ã
/etc/login.defs
Shadow å¯ç å¥ä»¶éç½®ã
/etc/subgid
Per user subordinate group IDs.
/etc/subuid
Per user subordinate user IDs.
åè§
login.defs(5), passwd(1), subgid(5), subuid(5), useradd(8).