04-26-2012 04:19 AM
Guys, In 11.31 what is the difference between these security files
/tcb/files/auth/system/default and /etc/default/security.
Which one to modify for setting user default password policies.
And I understand that these files are used for global setting and userdb is for per user basis, but then why am i getting this error on my trusted system.
userdbget: not allowed on a Trusted System
04-26-2012 07:34 AM
>userdbget: not allowed on a Trusted System
I don't see anything specific about userdbget(1m) and limitations. But I guess it must only work for shadow database and not trusted.
04-26-2012 11:49 AM
The Trusted system database (actually, files and directories are all within /tcb. Some global settings for Trusted are in the /tcb/files/auth/system directory and some are defined in the /etc/default/security file. Individual login settings are part of the user's login file in /tcb/files/auth/[A-Za-z] directories.
userdbget has nothing to do with Trusted systems. But to make things complicated, the 2 security environments do use the same /etc/default/security file.
04-27-2012 12:34 AM
I found one link on net which say that /tcb/files/auth/system is used only by trusted system and /etc/default/security can be used in trusted as well as non trusted systems.
Is it right..
If it is right then suppose if i set a different password expiry value in /tcb/files/auth/system as well as /etc/default/security then which one will be effective??