From owner-freebsd-doc@FreeBSD.ORG  Wed May  9 16:20:12 2012
Return-Path: <owner-freebsd-doc@FreeBSD.ORG>
Delivered-To: freebsd-doc@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 29706106566B
	for <freebsd-doc@hub.freebsd.org>; Wed,  9 May 2012 16:20:12 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id F1B738FC22
	for <freebsd-doc@hub.freebsd.org>; Wed,  9 May 2012 16:20:11 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q49GKBNi036246
	for <freebsd-doc@freefall.freebsd.org>; Wed, 9 May 2012 16:20:11 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q49GKBMh036245;
	Wed, 9 May 2012 16:20:11 GMT (envelope-from gnats)
Resent-Date: Wed, 9 May 2012 16:20:11 GMT
Resent-Message-Id: <201205091620.q49GKBMh036245@freefall.freebsd.org>
Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer)
Resent-To: freebsd-doc@FreeBSD.org
Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Mark Saad <msaad@about.com>
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 4279B106566B
	for <FreeBSD-gnats-submit@freebsd.org>;
	Wed,  9 May 2012 16:15:00 +0000 (UTC)
	(envelope-from msaad@blindness.ops.about.com)
Received: from smtpapps.about.com (smtpapps.about.com [207.241.149.197])
	by mx1.freebsd.org (Postfix) with SMTP id DCB328FC0C
	for <FreeBSD-gnats-submit@freebsd.org>;
	Wed,  9 May 2012 16:14:59 +0000 (UTC)
Received: (qmail 51443 invoked from network); 9 May 2012 16:08:18 -0000
Received: from 209.66.78.50.available.above.net (HELO blindness.ops.about.com)
	(209.66.78.50)
	by smtpapps.about.com with SMTP; 9 May 2012 16:08:18 -0000
Received: from blindness.ops.about.com (localhost [127.0.0.1])
	by blindness.ops.about.com (8.14.5/8.14.5) with ESMTP id q49G8HbG036794
	for <FreeBSD-gnats-submit@freebsd.org>;
	Wed, 9 May 2012 12:08:18 -0400 (EDT)
	(envelope-from msaad@blindness.ops.about.com)
Received: (from root@localhost)
	by blindness.ops.about.com (8.14.5/8.14.5/Submit) id q49G7sEl031762;
	Wed, 9 May 2012 12:07:54 -0400 (EDT) (envelope-from msaad)
Message-Id: <201205091607.q49G7sEl031762@blindness.ops.about.com>
Date: Wed, 9 May 2012 12:07:54 -0400 (EDT)
From: Mark Saad <msaad@about.com>
To: FreeBSD-gnats-submit@FreeBSD.org
X-Send-Pr-Version: 3.113
Cc: 
Subject: docs/167741: Group Passwords do not work and are not documented
	properly
X-BeenThere: freebsd-doc@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Mark Saad <msaad@about.com>
List-Id: Documentation project <freebsd-doc.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-doc>
List-Post: <mailto:freebsd-doc@freebsd.org>
List-Help: <mailto:freebsd-doc-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 09 May 2012 16:20:12 -0000


>Number:         167741
>Category:       docs
>Synopsis:       Group Passwords do not work and are not documented properly
>Confidential:   no
>Severity:       serious
>Priority:       low
>Responsible:    freebsd-doc
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          doc-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed May 09 16:20:11 UTC 2012
>Closed-Date:
>Last-Modified:
>Originator:     Mark Saad
>Release:        FreeBSD 9.0-STABLE amd64
>Organization:
About.com
>Environment:
System: FreeBSD blindness.ops.about.com 9.0-STABLE FreeBSD 9.0-STABLE #2: Tue Apr 10 11:32:01 EDT 2012 root@blindness.ops.about.com:/usr/obj/usr/src/sys/GENERIC amd64


>Description:
	Group Password support appears to be broken , as well as the man pages for group, newgrp, groups do not mention how to use
it.  Eitan Adler noted this is a docs bug however , following his instructions , which appear to be correct do not work. 
>How-To-Repeat:


root@blindness:~# pw groupadd testgroup
root@blindness:~# pw group mod testgroup -h 0
New password for group testgroup:   <Enter the passowrd: blahblahblah>
root@blindness:~# exit
logout
msaad@blindness:~% newgrp testgroup
Password:
newgrp: setgid: Operation not permitted
msaad@blindness:~%

>Fix:

Part 1. 
  In the group man page man 5 group in the SEE ALSO section should include a refrence to newgrp(1) 
In the man page for newgrp(1) an example of how to set a group passowrd should be included. 
Something similar to my example . 

Part 2. 
   The group password option fails to work, with the users unable to call setgid. A part of a truss of the process is below.


Truss Output

write(3,"Password:",9)                           = 9 (0x9)
read(3,"a",1)                                    = 1 (0x1)
read(3,"\n",1)                                   = 1 (0x1)
write(3,"\n",1)                                  = 1 (0x1)
ioctl(3,TIOCSETAF,0xffffd660)                    = 0 (0x0)
sigaction(SIGALRM,{ SIG_DFL 0x0 ss_t },0x0)      = 0 (0x0)
sigaction(SIGHUP,{ SIG_DFL 0x0 ss_t },0x0)       = 0 (0x0)
sigaction(SIGINT,{ SIG_DFL SA_RESTART ss_t },0x0) = 0 (0x0)
sigaction(SIGQUIT,{ SIG_DFL SA_RESTART ss_t },0x0) = 0 (0x0)
sigaction(SIGPIPE,{ SIG_DFL SA_RESTART ss_t },0x0) = 0 (0x0)
sigaction(SIGTERM,{ SIG_DFL SA_RESTART|SA_SIGINFO ss_t },0x0) = 0 (0x0)
sigaction(SIGTSTP,{ SIG_DFL SA_RESTART ss_t },0x0) = 0 (0x0)
sigaction(SIGTTIN,{ SIG_DFL SA_RESTART ss_t },0x0) = 0 (0x0)
sigaction(SIGTTOU,{ SIG_DFL SA_RESTART ss_t },0x0) = 0 (0x0)
close(3)                                         = 0 (0x0)
open("/etc/auth.conf",O_RDONLY,0141)             = 3 (0x3)
read(3,"#\n# $FreeBSD: src/etc/auth.conf"...,4096) = 237 (0xed)
read(3,0x7fffffffc670,4096)                      = 0 (0x0)
close(3)                                         = 0 (0x0)
__sysctl(0x7fffffffd950,0x2,0x7fffffffd96c,0x7fffffffd960,0x0,0x0) = 0 (0x0)
getgroups(0x400,0x801041000,0x801000658,0x42,0x601f48,0xffffffff) = 3 (0x3)
seteuid(0x3ea,0x801041008,0x3,0x3,0x601f48,0xffffffff) = 0 (0x0)
setgid(0x3eb,0x801041008,0x3,0x3,0x601f48,0xffffffff) ERR#1 'Operation not permitted'
getuid()                                         = 1002 (0x3ea)
seteuid(0x3ea,0x801041008,0xffffffffffffffff,0x1,0x601f48,0xffffffff) = 0 (0x0)
write(2,"newgrp: ",8)                            = 8 (0x8)
write(2,"setgid",6)                              = 6 (0x6)
write(2,": ",2)                                  = 2 (0x2)
stat("/usr/share/nls/C/libc.cat",0x7fffffffd330) ERR#2 'No such file or directory'
stat("/usr/share/nls/libc/C",0x7fffffffd330)     ERR#2 'No such file or directory'
stat("/usr/local/share/nls/C/libc.cat",0x7fffffffd330) ERR#2 'No such file or directory'
stat("/usr/local/share/nls/libc/C",0x7fffffffd330) ERR#2 'No such file or directory'
write(2,"Operation not permitted\n",24)          = 24 (0x18)
seteuid(0x3ea,0x7fffffffd210,0x0,0x18,0x7ff7ff2af0d6,0xffffffff) = 0 (0x0)
getuid()                                         = 1002 (0x3ea)
setuid(0x3ea,0x7fffffffd210,0x0,0x18,0x7ff7ff2af0d6,0xffffffff) = 0 (0x0)
execve("/bin/csh",<missing argument>,<missing argument>) = 0 (0x0)
mmap(0x0,32768,PROT_READ|PROT_WRITE,MAP_PRIVATE|MAP_ANON,-1,0x0) = 34366480384 (0x80066e000)
issetugid(0x80086ea20,0x7fffffffefd7,0x40,0x0,0xffff80080086fa49,0x0) = 0 (0x0)
open("/etc/libmap.conf",O_RDONLY,041603500)      ERR#2 'No such file or directory'
open("/var/run/ld-elf.so.hints",O_RDONLY,057)    = 3 (0x3)
read(3,"Ehnt\^A\0\0\0\M^@\0\0\0\M-a\0\0"...,128) = 128 (0x80)
lseek(3,0x80,SEEK_SET)   




>Release-Note:
>Audit-Trail:
>Unformatted: