[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: adduser problems

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: adduser problems
From: Seth Arnold <sarnold_(_at_)_willamette_(_dot_)_edu>
Date: Wed, 25 Oct 2000 12:06:53 -0700
Mail-followup-to: misc_(_at_)_openbsd_(_dot_)_org

* Wilfried Henseler <w_(_dot_)_henseler_(_at_)_snoopmedia_(_dot_)_com> [001025 02:47]:
> 1. There is no adduser_proc man page (man afterboot and
>    the FAQ tell to read that man page).

Hmm. My version of afterboot(8) does not mention adduser_proc, but
rather adduser(8) and vipw(8).

> /etc $ userinfo testuser
[...]
> groups  testuser wheel users guest

I strongly suggest against allowing testuser into the wheel group; wheel
is there to help with security, and test users often do not add to
security. Instead, the provide a seldom-used login that an attacker
would love to have access to, especially if it has wheel access.

> Has anyone a clue for me, what i could check for?

My best guess is that running vipw(8), making sure everything looks
good, and then saving the file and exiting will do the job. I suggest
this because the passwd file isn't used directly, rather, a database is
used (as created/managed by pwd_mkdb(8)). If the database isn't updated,
then I would fully expect wierdness. vipw runs a sanity check on the
file, and then builds the database.

HTH



-- 
``Oh Lord; Ooh you are so big; So absolutely huge; Gosh we're all really
impressed down here, I can tell you.''

Prev by Date: Re: Can Nat work with ipsec?
Next by Date: Re: Problem with -current of 10/24
Previous by thread: Re: Can Nat work with ipsec?
Next by thread: Re: adduser problems
Index(es):
- Date
- Thread

Visit your host, monkey.org