Date: Sun, 15 Jun 2003 16:18:34 +0200 (CEST) From: Martin Blapp <mb@imp.ch> To: Mark Murray <mark@grondar.org> Cc: current@freebsd.org Subject: Re: HEADS UP: rpc.yppasswdd working again Message-ID: <20030615161737.X60004@cvs.imp.ch> In-Reply-To: <200306151329.h5FDThHh077681@grimreaper.grondar.org> References: <200306151329.h5FDThHh077681@grimreaper.grondar.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> he can change passwords on the server at will.
>From the rpc.yppasswdd manpage:
The FreeBSD version of rpc.yppasswdd also allows the super-user on the
NIS master server to perform more sophisticated updates on the NIS passwd
maps. The super-user can modify any field in any user's master.passwd
entry in any domain, and can do so without knowing the user's existing
NIS password (when the server receives a request from the super-user, the
password authentication check is bypassed). Furthermore, if the server is
invoked with the -a flag, the super-user can even add new entries to the
maps using ypchpass(1). Again, this only applies to the super-user on
the NIS master server: none of these special functions can be performed
over the network.
The rpc.yppasswdd utility can only be run on a machine that is an NIS
master server.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030615161737.X60004>