Date: Mon, 13 Aug 2001 19:34:29 +0200 From: Ivan Krstic <ike@gnjilux.srk.fer.hr> To: freebsd-security@freebsd.org Subject: Re: bin user Message-ID: <20010813193429.Z3889@gnjilux.cc.fer.hr> In-Reply-To: <000b01c1241d$1feb9970$0d00a8c0@alexus>; from ml@db.nexgen.com on Mon, Aug 13, 2001 at 01:26:44PM -0400 References: <000b01c1241d$1feb9970$0d00a8c0@alexus>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Aug 13, 2001 at 01:26:44PM -0400, alexus wrote: > is it safe to allow user bin have shell but with password that no one will > know? [snip] If the only reason to give the bin user a shell is so you can su to this account, there's no need to assign a password at all. The shadow file entry illustrates this: bin:*:3:7::0:0:Binaries Commands and Source,,,:/:/sbin/nologin Note the second field is an asterisk, which is an impossible hash (no password will ever match). So, just assign this user a valid shell, and leave the password the way it already is. Best regards, -- Ivan Krstic - ike " life is the road beneath my feet, love is the girl I wait to meet, and art is everything I create, rob me of any and I will hate, you, my God, my devil, my fate " To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010813193429.Z3889>