From owner-freebsd-questions Thu Sep 5 0:32:54 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A840037B400 for ; Thu, 5 Sep 2002 00:32:49 -0700 (PDT) Received: from ei.bzerk.org (ei.xs4all.nl [213.84.67.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5A86E43E3B for ; Thu, 5 Sep 2002 00:32:48 -0700 (PDT) (envelope-from fbsd-q@bzerk.org) Received: from ei.bzerk.org (BOFH@localhost [127.0.0.1]) by ei.bzerk.org (8.12.5/8.12.5) with ESMTP id g857XMg9065680; Thu, 5 Sep 2002 09:33:22 +0200 (CEST) (envelope-from stable@ei.bzerk.org) Received: (from stable@localhost) by ei.bzerk.org (8.12.5/8.12.5/Submit) id g857XLsZ065679; Thu, 5 Sep 2002 09:33:21 +0200 (CEST) Date: Thu, 5 Sep 2002 09:33:21 +0200 From: Ruben de Groot To: "Brian T. Schellenberger" Cc: Matthew Seaman , freebsd-questions@FreeBSD.ORG Subject: Re: passwd: Permission denied Message-ID: <20020905073321.GA65524@ei.bzerk.org> References: <200209041755.24531.bts@babbleon.org> <20020904231555.GC28529@happy-idiot-talk.infracaninophi> <200209042156.04364.bts@babbleon.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200209042156.04364.bts@babbleon.org> User-Agent: Mutt/1.4i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, Sep 04, 2002 at 09:56:03PM -0400, Brian T. Schellenberger typed: > > I was trying to change the password from an xterm where I had done an > > su - baduser > > to change to the userid. I thought that with the - option su acted > "just like" a login, but I was wrong. When I actually logged in from a > console window, it worked just fine. > > Live and learn. > > Does anybody know how su - differs from a "real" login, exactly? It's a matter of real and effective user id. Use su - baduser passwd baduser to change this user's password, or just passwd baduser (as root). > > Is there a way to "log in" for real in an X window? If I try "login" it > says "not a login shell" and if I try telnet, I am reminded that I > chose not to set up a local telnet server--and it seems like a pretty > significant security comprimise if I have to set up a telnet server > just to allow local login in an X window. > > Not that it's that big a deal, really--I only rarely need to do "real" > login things and for that I *can* switch to a console--but I would like > to know on general principles . . . > > > > > > | When you cloned the account did you perhaps not give it a unique UID > | number? This snippet will print out how often each UID number is > | mentioned in the master.passwd file: > | > | awk -F: '{ print $3 }' < /etc/master.passwd | sort -n | uniq -c > | > | It can also occur if you remove the SUID bit from /usr/bin/passwd or > | mount /usr nosuid, but then no one other than root would be able to > | change passwords. > | > | Cheers, > | > | Matthew > > -- > Brian, the man from Babble-On . . . . bts@babbleon.org (personal) > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message