2024-08-12
The most common use of passwd is to change your own password. When you execute passwd without any arguments, the system prompts you for your current password and then twice for your new password.
passwdThe system will verify your current password and then prompt you to enter and confirm your new password. It enforces password complexity rules (these vary depending on your system’s configuration). If the new password doesn’t meet these rules, you’ll receive an error message and be prompted to try again.
Changing another user’s password requires root privileges (or equivalent). You’ll need to use the username as an argument.
sudo passwd john_doeThis command will prompt you (as root) for the new password for the john_doe user, twice for confirmation. Remember, using sudo requires you to have the necessary permissions in your system’s configuration.
While passwd primarily changes existing passwords, it can also be used in conjunction with user creation commands like useradd to set an initial password. This is often done in a single line command as part of user creation. Note that this practice is generally discouraged in favour of using useradd with the -p option which allows for setting a password directly without using echo. However, for completeness, here’s how you can do it:
sudo useradd newuser && sudo passwd newuserThis first creates a user named newuser and then immediately prompts you to set their initial password.
passwd with -d to Delete a PasswordThe -d option removes a user’s password, effectively locking them out of the account until a new password is set. This can be useful for security reasons, for example, if an account is compromised.
sudo passwd -d john_doeThis command removes the password for the john_doe user. The user will then be unable to log in until a new password is set via passwd john_doe.
Many Linux distributions provide additional options within the passwd command to control password expiration and warnings. These options aren’t universally standard, so consult your distribution’s documentation for specifics. For example, you might find options like setting password expiry time or specifying the number of days before a password expires that the user receives a warning. These often involve setting values within /etc/login.defs or similar configuration files, and the passwd command then reflects those settings.
Always handle password management securely. Avoid storing passwords in plain text, use strong and unique passwords, and regularly update them. Remember that using sudo appropriately grants significant power, so exercise caution and follow security best practices.