我想做这样的事:
echo whoami | sh
该命令whoami在 中运行sh,但由于整个管道在子 shell 中运行,因此sh解释器退出而不是给我 shell 提示符。如果不使用-c参数,我如何向 发送一些输入sh并让它继续运行?
我需要知道,因为sh这只是一个例子;我有一个不同的程序,它有一个交互式解释器,但没有相当于-c参数的东西。
timedatectl产生以下输出:
Local time: Tue 2022-05-10 01:07:46 UTC
Universal time: Tue 2022-05-10 01:07:46 UTC
RTC time: Tue 2022-05-10 01:07:46
Time zone: Etc/UTC (UTC, +0000)
System clock synchronized: yes
NTP service: active
RTC in local TZ: no
我看到系统时钟与 NTP 同步,但是“同步”到什么程度呢?查询 NTP 的频率如何,如果与 NTP 服务器的连接丢失,系统将在什么时候决定时钟不再同步?
和听起来足够合理的文档:try_first_passuse_first_pass
try_first_pass
Before prompting the user for their password, the module
first tries the previous stacked module's password in case
that satisfies this module as well.
use_first_pass
The argument use_first_pass forces the module to use a
previous stacked modules password and will never prompt the
user - if no password is available or the password is not
appropriate, the user will be denied access.
try_first_pass如果有密码,则使用先前输入的密码,否则提示。use_first_pass如果有密码,则使用先前输入的密码,否则失败。但也有一个use_authtok选择:
use_authtok
When password changing enforce the module to set the new
password to the one provided by a previously stacked password
module (this is used in the example of the stacking of the
pam_cracklib module documented below).
是use_authtok为了什么?是和 一样try_first_pass,还是一样use_first_pass,还是完全不同?
我意识到不推荐使用pam_tally2以支持pam_faillock,但无论如何我都必须使用它。我不明白这两个选项之间的区别。它们听起来和我一模一样:
lock_time=n
Always deny for n seconds after failed attempt.
unlock_time=n
Allow access after n seconds after failed attempt. If
this option is used the user will be locked out for the
specified amount of time after he exceeded his maximum
allowed attempts. Otherwise the account is locked until
the lock is removed by a manual intervention of the
system administrator.