From owner-freebsd-bugs  Thu Jul 13 22:36:20 1995
Return-Path: bugs-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id WAA16941
          for bugs-outgoing; Thu, 13 Jul 1995 22:36:20 -0700
Received: from statler.csc.calpoly.edu (statler.csc.calpoly.edu [129.65.17.8])
          by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id WAA16935
          for <bugs@freebsd.org>; Thu, 13 Jul 1995 22:36:18 -0700
Received: (from nlawson@localhost) by statler.csc.calpoly.edu (8.6.12/N8) id WAA14708; Thu, 13 Jul 1995 22:36:08 -0700
From: Nathan Lawson <nlawson@statler.csc.calpoly.edu>
Message-Id: <199507140536.WAA14708@statler.csc.calpoly.edu>
Subject: Re: OPIE and shadow passwords
To: cmetz@sundance.itd.nrl.navy.mil (Craig Metz)
Date: Thu, 13 Jul 1995 22:36:07 -0700 (PDT)
Cc: mjk@plaza.ds.adp.com, skey-users@thumper.bellcore.com, bugs@freebsd.org
In-Reply-To:  <9507132052.aa19902@cs.nrl.navy.mil> from "Craig Metz" at Jul 13, 95 03:52:18 pm
X-Mailer: ELM [version 2.4 PL23]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Content-Length: 1120      
Sender: bugs-owner@freebsd.org
Precedence: bulk

> 
> >        As FreeBSD uses it's own form of shadow passwords, the encrypted
> >password fields in /etc/passwd have been replaced with "*" characters.
> >Thus, OPIE's lookupuser() in login.c and su.c fail, as they check to
> >see if the password is "stared out":
> 
> 	We developed NRL OPIE 2.0 primarily on BSD/OS 2.0 and 4.4BSD.
> Both of these use the 4.4BSD shadow password system, which will properly
> fill in the pwent pw_passwd field if the calling process has the appropriate
> (usually superuser) priveleges. In my opinion, if the FreeBSD team decided
> to break this behavior, they have done the wrong thing.

The password system in FreeBSD follows the 4.4BSD model.  You are correct in
assuming that it will fill in the pw_passwd field when the process has the
proper privileges.  I don't see what this guy's problem is, but perhaps his
login/su are running with the wrong privs.  (Works fine for me) 

-- 
Nathan Lawson     \    Never let your schooling interfere with your education.
CSL 490/News Admin \
(805)756-7180 @Work \  "The steady state of disks is full."  -- Ken Thompson
---------------------