From owner-freebsd-stable Fri Sep 22 6:40:22 2000 Delivered-To: freebsd-stable@freebsd.org Received: from 01.dhcp.hck.carroll.com (core1.hck.carroll.com [216.44.16.2]) by hub.freebsd.org (Postfix) with ESMTP id BCED937B422 for ; Fri, 22 Sep 2000 06:40:20 -0700 (PDT) Received: (from damien@localhost) by 01.dhcp.hck.carroll.com (8.9.3/8.9.3) id JAA66278; Fri, 22 Sep 2000 09:42:52 -0400 (EDT) (envelope-from damien) Date: Fri, 22 Sep 2000 09:42:52 -0400 From: Damien Tougas To: Dima Dorfman Cc: freebsd-stable@freebsd.org Subject: Re: Request for change to /etc/rc script Message-ID: <20000922094252.C66178@carroll.com> References: <20000921181057.A61901@carroll.com> <20000922002643.4200C1F25@static.unixfreak.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20000922002643.4200C1F25@static.unixfreak.org>; from dima@unixfreak.org on Thu, Sep 21, 2000 at 05:26:43PM -0700 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, Sep 21, 2000 at 05:26:43PM -0700, Dima Dorfman wrote: >How about leaving the 'root' entry in master.passwd intact (so you can >still boot single user, etc.), and adding a 'toor' or 'nisroot' (call >it whatever you want) user to the NIS maps. This way, your machine >can function without an NIS server should the need arise, but you >still have a global superuser account. You can even disable the local >root account if you wish (use '*' in the password field). As Lyndon >said, and I agree, "not having local entries for root and wheel is >just asking for trouble." It's all about password management. I don't want to manually distribute the master.passwd file to every workstation every time we decide to change the password. -- Damien Tougas Systems Administrator Carroll-Net, Inc. http://www.carroll.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message