Re: How to manage passwords of lots of server?

On 2008-05-21 MontyRee wrote:
> Please share your valuable experience.
>
> I have operated thousands of linux and w2k servers in the datacenter.
> So if I will change the admin(root) password, actually it is impossible..
> (because there are so many servers..)

Actually, no, it isn't.

> Mainly I use ssh at linux and terminal server at windows server to
> remote login.
>
> So is there any good method or solution to solve this problem?

On Linux:

for server in SERVER_LIST; do
  ssh root@$server \
    "ssh -i -e 's/\(root\):[^:]:\(.*\)$/\1:PASSWORD_HASH:\2/' /etc/shadow"
done

On Windows:

http://technet.microsoft.com/en-us/sysinternals/bb897543.aspx

Regards
Ansgar Wiechers

-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq