From owner-freebsd-current Thu Mar 9 23:31:54 2000 Delivered-To: freebsd-current@freebsd.org Received: by hub.freebsd.org (Postfix, from userid 758) id B9D5A37B6F9; Thu, 9 Mar 2000 23:31:52 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by hub.freebsd.org (Postfix) with ESMTP id B7DB62E8156; Thu, 9 Mar 2000 23:31:52 -0800 (PST) (envelope-from kris@hub.freebsd.org) Date: Thu, 9 Mar 2000 23:31:52 -0800 (PST) From: Kris Kennaway To: Paul Richards Cc: current@freebsd.org Subject: Re: The pw command In-Reply-To: <38C85A1D.F7A21141@originative.co.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, 10 Mar 2000, Paul Richards wrote: > Non-root users can use the pw command to get information from the > master.passwd file e.g. > > ps showuser paul > paul:*:1000:1000::0:0:& Richards:/home/paul:/usr/local/bin/bash % pw showuser kkenn kkenn:*:1000:0::0:0:Kris Kennaway:/home/kkenn:/usr/local/bin/tcsh % grep kkenn /etc/passwd kkenn:*:1000:0::0:0:Kris Kennaway:/home/kkenn:/usr/local/bin/tcsh % ls -l /usr/bin/pw -r-xr-xr-x 1 root wheel 53180 Mar 4 00:49 /usr/sbin/pw* In other words, pw(8) runs with no special privileges and can only read what the user can normally read. ---- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message