SSH経由でアクセスできるリモートSolarisシステムのルートパスワードを変更するためにLinuxシステムで実行されるスクリプトがあります。すべてが大丈夫だと思います。 passwdコマンドはパスワードを要求します。 2番目のパスワードは応答長が8文字ではなく...で終わります。アップデートは成功しましたが、Solarisにアクセスして確認してもパスワードは変更されません。シャドウファイルは変更されません。問題なくSolarisシステムでパスワードを直接変更できます。
$ cat ./expect2.txt
#!/usr/bin/expect --
# Input: username password hostname
set USER [lindex $argv 0]
set PASS [lindex $argv 1]
set IP [lindex $argv 2]
spawn ssh user1@$IP
expect "user1"
spawn sudo passwd $USER
expect "assword:"
send "$PASS\r"
expect "assword:"
send "$PASS\r"
expect eof
exit
exit
スクリプトを実行します。
$ expect ./expect2.txt root abc123 host1
spawn ssh user1@host1
host1 user1 : spawn sudo passwd root
Changing password for user root.
New password:
BAD PASSWORD: The password is shorter than 8 characters
Retype new password:
passwd: all authentication tokens updated successfully.
デバッグ
$ expect -d ./expect2.txt root abc123 host1
expect version 5.45.4
argv[0] = expect argv[1] = -d argv[2] = ./expect2.txt argv[3] = root argv[4] = abc123 argv[5] = host1
set argc 3
set argv0 "./expect2.txt"
set argv "root abc123 host1"
executing commands from command file ./expect2.txt
spawn ssh user1@host1
parent: waiting for sync byte
parent: telling child to go ahead
parent: now unsynchronized from child
spawn: returns {2669765}
expect: does "" (spawn_id exp4) match glob pattern "user1"? no
match glob pattern "user1"? yes
expect: set expect_out(0,string) "user1"
expect: set expect_out(spawn_id) "exp4"
spawn sudo passwd root
parent: waiting for sync byte
parent: telling child to go ahead
parent: now unsynchronized from child
spawn: returns {2669769}
expect: does "" (spawn_id exp7) match glob pattern "assword:"? no
Changing password for user root.
New password:
expect: does "Changing password for user root.\r\nNew password: " (spawn_id exp7) match glob pattern "assword:"? yes
expect: set expect_out(0,string) "assword:"
expect: set expect_out(spawn_id) "exp7"
expect: set expect_out(buffer) "Changing password for user root.\r\nNew password:"
send: sending "abc123\r" to { exp7 }
expect: does " " (spawn_id exp7) match glob pattern "assword:"? no
BAD PASSWORD: The password is shorter than 8 characters
Retype new password:
expect: does " \r\nBAD PASSWORD: The password is shorter than 8 characters\r\nRetype new password: " (spawn_id exp7) match glob pattern "assword:"? yes
expect: set expect_out(0,string) "assword:"
expect: set expect_out(spawn_id) "exp7"
expect: set expect_out(buffer) " \r\nBAD PASSWORD: The password is shorter than 8 characters\r\nRetype new password:"
send: sending "abc123\r" to { exp7 }
passwd: all authentication tokens updated successfully.
expect: read eof
expect: set expect_out(spawn_id) "exp7"
expect: set expect_out(buffer) " \r\npasswd: all authentication tokens updated successfully.\r\n"
答え1
これにより、代表ホストとのリモートセッションが開始されます$IP
。
spawn ssh user1@$IP
expect "user1"
これが始まる新しいセッション次に表示されるユーザーのパスワードを変更します$USER
。
spawn sudo passwd $USER
expect "assword:"
これら2つのセッションは互いに独立しており、$USER
localhostでパスワードを変更することに注意してください。意図的にそうすることもできますが、send
そうではありませんspawn
。