<div dir="ltr">I checked the script and it is fine. The problem arise when the user is not present in the LDAP database. Therefore, the account doesn't have shadowMax field as the script complaint. For instance, the user "german" only exists in the /etc/passwd file.<br></div><div class="gmail_extra"><br><div class="gmail_quote">On Sun, Jan 31, 2016 at 3:54 PM, Bernie Innocenti <span dir="ltr"><<a href="mailto:bernie@codewiz.org" target="_blank">bernie@codewiz.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class="">On 01/31/2016 10:42 AM, Samuel Cantero wrote:<br>
> ¿Should be deactivate those users?<br>
<br>
</span>Yes, let's deactivate them please. Ancient accounts constitute a (small,<br>
but non-zero) security risk. That's why we expire passwords every 6<br>
months. There's a script to do that quickly:<br>
<br>
system-userdel <user><br>
<br>
It preserves the home in /home/_disabled/<user>.disabled<br>
<br>
Also, there must be a bug in my cronjob: it doesn't print the username<br>
for the immortal users.<br>
<div><div class="h5"><br>
<br>
> ---------- Forwarded message ----------<br>
> From: Cron Daemon <<a href="mailto:root@sugarlabs.org">root@sugarlabs.org</a>><br>
> Date: Sun, Jan 31, 2016 at 3:47 AM<br>
> Subject: [Systems-logs] Cron <root@sunjammer> test -x /usr/sbin/anacron ||<br>
> ( cd / && run-parts --report /etc/cron.weekly )<br>
> To: <a href="mailto:root@sugarlabs.org">root@sugarlabs.org</a><br>
><br>
><br>
> /etc/cron.weekly/check_pwd_expire:<br>
> Note: user adborden password has expired since 1440 days<br>
> Note: user aguz password has expired since 489 days<br>
> Note: user aklis password has expired since 824 days<br>
> Note: user aneesh password has expired since 584 days<br>
> Note: user bernie2 password has expired since 1377 days<br>
> Note: user caspar password has expired since 1137 days<br>
> Note: user danishka password has expired since 1221 days<br>
> Note: user djbclark password has expired since 1573 days<br>
> Note: user dnarvaez password has expired since 576 days<br>
> Note: user dpic password has expired since 1438 days<br>
> Note: user fdanesse password has expired since 670 days<br>
> Note: user gboudrias password has expired since 1334 days<br>
> Warning: user has no shadowMax field in LDAP database<br>
> Note: user iraguet password has expired since 411 days<br>
> Warning: user has no shadowMax field in LDAP database<br>
> Note: user manuq password has expired since 527 days<br>
> Note: user nitika password has expired since 960 days<br>
> Warning: user has no shadowMax field in LDAP database<br>
> Note: user sridhar password has expired since 730 days<br>
> Note: user valerie password has expired since 1325 days<br>
> Note: user vueltaciclista password has expired since 1573 days<br>
> _______________________________________________<br>
> Systems-logs mailing list<br>
> <a href="mailto:Systems-logs@lists.sugarlabs.org">Systems-logs@lists.sugarlabs.org</a><br>
> <a href="http://lists.sugarlabs.org/listinfo/systems-logs" rel="noreferrer" target="_blank">http://lists.sugarlabs.org/listinfo/systems-logs</a><br>
><br>
><br>
><br>
</div></div>> _______________________________________________<br>
> Systems mailing list<br>
> <a href="mailto:Systems@lists.sugarlabs.org">Systems@lists.sugarlabs.org</a><br>
> <a href="http://lists.sugarlabs.org/listinfo/systems" rel="noreferrer" target="_blank">http://lists.sugarlabs.org/listinfo/systems</a><br>
><br>
<span class="HOEnZb"><font color="#888888"><br>
<br>
--<br>
_ // Bernie Innocenti<br>
\X/ <a href="http://codewiz.org" rel="noreferrer" target="_blank">http://codewiz.org</a><br>
_______________________________________________<br>
Systems mailing list<br>
<a href="mailto:Systems@lists.sugarlabs.org">Systems@lists.sugarlabs.org</a><br>
<a href="http://lists.sugarlabs.org/listinfo/systems" rel="noreferrer" target="_blank">http://lists.sugarlabs.org/listinfo/systems</a><br>
</font></span></blockquote></div><br></div>