From owner-freebsd-current Tue Apr 6 6:50:49 1999 Delivered-To: freebsd-current@freebsd.org Received: from axl.noc.iafrica.com (axl.noc.iafrica.com [196.31.1.175]) by hub.freebsd.org (Postfix) with ESMTP id E9B00150A2 for ; Tue, 6 Apr 1999 06:50:38 -0700 (PDT) (envelope-from sheldonh@axl.noc.iafrica.com) Received: from sheldonh (helo=axl.noc.iafrica.com) by axl.noc.iafrica.com with local-esmtp (Exim 2.12 #1) id 10UWCt-0005ra-00; Tue, 6 Apr 1999 15:47:59 +0200 From: Sheldon Hearn To: Scott Michel Cc: current@freebsd.org Subject: Re: YP/NIS and passwd weirdness In-reply-to: Your message of "Fri, 02 Apr 1999 17:26:15 PST." <199904030126.RAA62422@mordred.cs.ucla.edu> Date: Tue, 06 Apr 1999 15:47:59 +0200 Message-ID: <22541.923406479@axl.noc.iafrica.com> Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, 02 Apr 1999 17:26:15 PST, Scott Michel wrote: > Removing the "*" makes things work again, but the security check > wails about a user w/o a password. The entries should not use "*" in the first place. With regard to the security check, see PR 9639 at: http://www.freebsd.org/cgi/query-pr.cgi?pr=9639 While no diffs are supplied with the PR, you could try the kludge below. There's a very good reason why this 5-second abortion isn't attached to the PR -- it's ugly. But it sounds like you care, so knock yourself out. :-) Ciao, Sheldon. Index: security =================================================================== RCS file: /home/ncvs/src/etc/security,v retrieving revision 1.29 diff -u -d -r1.29 security --- security 1999/01/10 11:18:59 1.29 +++ security 1999/04/06 13:27:58 @@ -54,7 +54,7 @@ separator echo "checking for passwordless accounts:" -awk -F: '$2=="" {print $0}' /etc/master.passwd +grep -v '^\+' /etc/master.passwd | awk -F: '$2=="" {print $0}' # show denied packets if ipfw -a l 2>/dev/null | egrep "deny|reset|unreach" > $TMP; then To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message