In Linux systems, users are the key to system security. Through good user management practices, you can ensure that systems are authorized only to authorized personnel and limit unauthorized access. Therefore, mastering Linux user management is an essential skill for every system administrator. Today, we will introduce you to one of the most basic and practical commands in Linux user management – useradd.
Environment: CentOS8 Requirements: Manually create a new user, the user name is zhangsan, the uid is set to 1024 (provided that the uid is not occupied), the gid is also set to 1024, the group name has the same name as the user name, and the home directory In /home/zhangsan, the default shell is /bin/bash
Note: The following steps are performed using the root user. Some commands and operations only have permissions for the root user.
Step 1: Modify the /etc/passwd file
vim Open the /etc/passwd file and append a line of information
Each line of the /etc/passwd file represents a user's information, and each field separated by a colon represents a different meaning.
- The first field: Username
- The second field: Password, the x here is just an identifier, the real password is encrypted and stored in /etc/shadow
- The third field: UID
- The fourth field: GID
- The fifth field: User description information, optional
- The sixth field: User home directory location
- The seventh field: default shell
Modification is completed, save and exit.
Step 2: Modify the /etc/shadow file
Use vim to open the /etc/shadow file and enter the input mode. The system will give a warning. It tells you that you are planning to modify a read-only file (in fact, you do not have read permission).
You can take a look, the shadow file does not have any permissions
But it doesn’t matter. The root user we use can do whatever we want. Press Enter to continue.
Append a line of information at the end of the shadow file.
The shadow file is also information about one user per line, and each field has a different meaning.
- The first field: Username
- Second field: Password. Users who have passwords here are a string of encrypted characters. I filled in two exclamation marks here to indicate that there is no password.
- The third field: the time elapsed from 1970/01/01 to the last password change, in days.
- The fourth field: How long does it take for the password to be changed, 0 means it can be changed at any time.
- Fifth field: Password validity period
- The sixth field: How many days before the password expires to remind the user, 7 means to remind the user one week in advance.
- The seventh field: How many days can you still log in after the password expires, but you must change the password to log in.
- The eighth field: Maximum password usage period
-
The ninth field: System reserved field
After modification, use wq! to save and exit, otherwise a warning will be given and cannot be saved.
Step 3: Modify the /etc/group file
Append the following information at the end
group file has four fields in one line
- The first field is the group name
- The second field is the group password. The x here is similar to the password field of /etc/passwd.
- The third field is GID
- The fourth field is the user in the group. If the group is the primary group of a user, then the user will not be displayed in this field, so I leave it blank here.
Step 4: Create a new user home directory
mdkir /home/zhangsan
Step 5: Copy the environment variable configuration file in the /etc/skel directory to the home directory
这几个文件里面是用户的环境变量配置信息,我们使用 useradd 命令新建用户也会复制这几个文件到用户的家目录下。
第六步:修改家目录的权限和属主
到现在为止,用户 zhangsan 的家目录和其中的所有文件都是root用户的
将这些文件的归属权给 zhangsan,并修改文件权限
# 将用户 zhangsan 的家目录 /home/zhangsan 的属主和组修改为 zhangsan chown -R zhangsan:zhangsan /home/zhangsan # 修改文件的权限,只允许属主有读写权限,其他用户和组没有任何权限 chmod 700 /home/zhangsan
修改后的结果如下
第七步:创建邮箱文件
# 创建邮箱文件 touch /var/spool/mail/zhangsan # 同样需要修改邮箱的所有者 chown zhangsan:zhangsan /var/spool/mail/zhangsan
第八步:确认用户创建成功
本文介绍了Linux用户管理命令useradd的基本使用方法和常用选项,包括用户创建、密码设置、家目录分配等。当然,Linux系统中还有其他强大的用户管理命令,例如userdel、usermod等。但是,掌握useradd对于初学者来说是非常重要的,它是学习更高级别用户管理命令的基础。希望本文能够帮助您更好地进行Linux用户管理,保障您的系统安全。
The above is the detailed content of From Beginner to Mastery: A Guide to Linux User Management. For more information, please follow other related articles on the PHP Chinese website!
什么是linux设备节点Apr 18, 2022 pm 08:10 PMlinux设备节点是应用程序和设备驱动程序沟通的一个桥梁;设备节点被创建在“/dev”,是连接内核与用户层的枢纽,相当于硬盘的inode一样的东西,记录了硬件设备的位置和信息。设备节点使用户可以与内核进行硬件的沟通,读写设备以及其他的操作。
Linux中open和fopen的区别有哪些Apr 29, 2022 pm 06:57 PM区别:1、open是UNIX系统调用函数,而fopen是ANSIC标准中的C语言库函数;2、open的移植性没fopen好;3、fopen只能操纵普通正规文件,而open可以操作普通文件、网络套接字等;4、open无缓冲,fopen有缓冲。
linux中什么叫端口映射May 09, 2022 pm 01:49 PM端口映射又称端口转发,是指将外部主机的IP地址的端口映射到Intranet中的一台计算机,当用户访问外网IP的这个端口时,服务器自动将请求映射到对应局域网内部的机器上;可以通过使用动态或固定的公共网络IP路由ADSL宽带路由器来实现。
linux中eof是什么May 07, 2022 pm 04:26 PM在linux中,eof是自定义终止符,是“END Of File”的缩写;因为是自定义的终止符,所以eof就不是固定的,可以随意的设置别名,linux中按“ctrl+d”就代表eof,eof一般会配合cat命令用于多行文本输出,指文件末尾。
linux怎么判断pcre是否安装May 09, 2022 pm 04:14 PM在linux中,可以利用“rpm -qa pcre”命令判断pcre是否安装;rpm命令专门用于管理各项套件,使用该命令后,若结果中出现pcre的版本信息,则表示pcre已经安装,若没有出现版本信息,则表示没有安装pcre。
linux怎么查询mac地址Apr 24, 2022 pm 08:01 PMlinux查询mac地址的方法:1、打开系统,在桌面中点击鼠标右键,选择“打开终端”;2、在终端中,执行“ifconfig”命令,查看输出结果,在输出信息第四行中紧跟“ether”单词后的字符串就是mac地址。
linux中rpc是什么意思May 07, 2022 pm 04:48 PM在linux中,rpc是远程过程调用的意思,是Reomote Procedure Call的缩写,特指一种隐藏了过程调用时实际通信细节的IPC方法;linux中通过RPC可以充分利用非共享内存的多处理器环境,提高系统资源的利用率。
手机远程linux工具有哪些Apr 29, 2022 pm 05:30 PM手机远程linux工具有:1、JuiceSSH,是一款功能强大的安卓SSH客户端应用,可直接对linux服务进行管理;2、Termius,可以利用手机来连接Linux服务器;3、Termux,一个强大的远程终端工具;4、向日葵远程控制等等。
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
SublimeText3 English version
Recommended: Win version, supports code prompts!
mPDF
mPDF is a PHP library that can generate PDF files from UTF-8 encoded HTML. The original author, Ian Back, wrote mPDF to output PDF files "on the fly" from his website and handle different languages. It is slower than original scripts like HTML2FPDF and produces larger files when using Unicode fonts, but supports CSS styles etc. and has a lot of enhancements. Supports almost all languages, including RTL (Arabic and Hebrew) and CJK (Chinese, Japanese and Korean). Supports nested block-level elements (such as P, DIV),
Zend Studio 13.0.1
Powerful PHP integrated development environment
Atom editor mac version download
The most popular open source editor
MinGW - Minimalist GNU for Windows
This project is in the process of being migrated to osdn.net/projects/mingw, you can continue to follow us there. MinGW: A native Windows port of the GNU Compiler Collection (GCC), freely distributable import libraries and header files for building native Windows applications; includes extensions to the MSVC runtime to support C99 functionality. All MinGW software can run on 64-bit Windows platforms.
