From owner-freebsd-questions Thu Feb 20 7:50:47 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9C2F937B405 for ; Thu, 20 Feb 2003 07:50:45 -0800 (PST) Received: from out001.verizon.net (out001pub.verizon.net [206.46.170.140]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9C6DA43FB1 for ; Thu, 20 Feb 2003 07:50:42 -0800 (PST) (envelope-from cswiger@mac.com) Received: from mac.com ([129.44.41.173]) by out001.verizon.net (InterMail vM.5.01.05.20 201-253-122-126-120-20021101) with ESMTP id <20030220155041.XFID23484.out001.verizon.net@mac.com> for ; Thu, 20 Feb 2003 09:50:41 -0600 Message-ID: <3E54F950.2070706@mac.com> Date: Thu, 20 Feb 2003 10:50:40 -0500 From: Chuck Swiger Organization: The Courts of Chaos User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.3b) Gecko/20030210 X-Accept-Language: en-us, en MIME-Version: 1.0 Cc: freebsd Subject: Re: MINUID in NIS Makefile References: <200302201226.37661.ajacoutot@lphp.org> <20030220151739.GM13096@dan.emsphone.com> <200302201630.21546.ajacoutot@lphp.org> In-Reply-To: <200302201630.21546.ajacoutot@lphp.org> X-Enigmail-Version: 0.73.1.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Authentication-Info: Submitted using SMTP AUTH at out001.verizon.net from [129.44.41.173] at Thu, 20 Feb 2003 09:50:41 -0600 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Antoine Jacoutot wrote: > On Thursday 20 February 2003 16:17, Dan Nelson wrote: [ ... ] > The MINUID and MINGID allow to create passwd.by* only with account which UID > are equal or higher than MINUID and group.by* only with groups which GID are > equal or higher than MINGID. 20-sec% MINUID=50 21-sec% awk -F: "{if (\$3 > $MINUID) print }" /etc/passwd bind:*:53:53:Bind Sandbox:/:/sbin/nologin uucp:*:66:66:UUCP pseudo-user:/var/spool/uucppublic:/usr/libexec/uucp/uucico xten:*:67:67:X-10 daemon:/usr/local/xten:/sbin/nologin pop:*:68:6:Post Office Owner:/nonexistent:/sbin/nologin www:*:80:80:World Wide Web Owner:/nonexistent:/sbin/nologin nobody:*:65534:65534:Unprivileged user:/nonexistent:/sbin/nologin chuck:*:1000:1000:Charles Swiger:/home/chuck:/bin/zsh squid:*:3128:3128:Squid Cache:/home/squid:/sbin/nologin ...or `ypcat`, or however you get a flatfile version of /etc/passwd. >> You don't need to copy >> /var/yp/master.passwd to edit it; just make the change and run "make". > > So I would change the original /etc/master.passwd ?????? Is that OK, it looks > like it's not. Use 'vipw' to edit /etc/passwd safely. However, the point of NIS is to provide a network-based source of users which are in addition to the users in the local /etc/passwd database. On your YP/NIS master server, cd to "/var/yp" and do a make. That will propogate updated versions of the passwd.foo NIS maps to the NIS clients. -Chuck To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message