[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: adduser problems
- To: misc_(_at_)_openbsd_(_dot_)_org
- Subject: Re: adduser problems
- From: Seth Arnold <sarnold_(_at_)_willamette_(_dot_)_edu>
- Date: Wed, 25 Oct 2000 12:06:53 -0700
- Mail-followup-to: misc_(_at_)_openbsd_(_dot_)_org
* Wilfried Henseler <w_(_dot_)_henseler_(_at_)_snoopmedia_(_dot_)_com> [001025 02:47]:
> 1. There is no adduser_proc man page (man afterboot and
> the FAQ tell to read that man page).
Hmm. My version of afterboot(8) does not mention adduser_proc, but
rather adduser(8) and vipw(8).
> /etc $ userinfo testuser
> groups testuser wheel users guest
I strongly suggest against allowing testuser into the wheel group; wheel
is there to help with security, and test users often do not add to
security. Instead, the provide a seldom-used login that an attacker
would love to have access to, especially if it has wheel access.
> Has anyone a clue for me, what i could check for?
My best guess is that running vipw(8), making sure everything looks
good, and then saving the file and exiting will do the job. I suggest
this because the passwd file isn't used directly, rather, a database is
used (as created/managed by pwd_mkdb(8)). If the database isn't updated,
then I would fully expect wierdness. vipw runs a sanity check on the
file, and then builds the database.
``Oh Lord; Ooh you are so big; So absolutely huge; Gosh we're all really
impressed down here, I can tell you.''
Visit your host, monkey.org