pwdutils is a collection of utilities to manage the passwd and shadow user information. The difference to the shadow suite is that these utilities can also modify the information stored in NIS, NIS+, or LDAP. PAM is used for user authentication and changing the pasword.
pwdutils contains passwd, chage, chfn, chsh, and a daemon for changing the password on a remote machine over a secure SSL connection. The daemon also uses PAM so that it can change passwords independent of where they are stored.
Version 3.0 contains a lot of bug fixes like for PAM/syslog interaction, failures of syscalls and for useradd -D. libnscd is now used to clear the nscd cache on Linux if an account was modified. groupmod and usermod got new options, which allows to remove and add single users from a singe group or list of groups.
passwd got a new option to read the password from stdin (for example from a pipe). All daemons and setuid binaries are compiled with -fpie/-pie. Logging is now done with stackable plugins: the administrator can currently choose between syslog, LAuS and/or the Linux audit interface.
For version 2.4 the programs useradd, userdel, groupadd, groupdel and vipw were added. Extended attributes are now preserved (for example ACLs and security attributes used by SELinux) and SELinux support was added. This versions can add/delete/modify user accounts and group entries in local files or stored in LDAP.
What's New in This Release:
· Support for locking and unlocking group passwords was added to gpasswd.
· passwd has now support for maintaining credentials with BioAPI.
· LDAP support for RFC2307bis was added.