From owner-freebsd-questions@FreeBSD.ORG Fri Jun 6 06:23:58 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5A08437B401 for ; Fri, 6 Jun 2003 06:23:58 -0700 (PDT) Received: from srvexch1.nanoteq.co.za (srvexch1.nanoteq.co.za [196.30.152.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4C62143F75 for ; Fri, 6 Jun 2003 06:23:53 -0700 (PDT) (envelope-from PK@nanoteq.com) Content-Class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-MimeOLE: Produced By Microsoft Exchange V6.0.4712.0 Date: Fri, 6 Jun 2003 15:20:28 +0200 Message-ID: <5AC9A01A8B1175418B4DF7F45DD94D5F1E8A3A@srvexch1.nanoteq.co.za> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: passwd Thread-Index: AcMsKiZ9gCzq58fiTVujPrR1AjUxSwAAxkrQ From: "Peut Kotze" To: "Mark Redding" , Subject: RE: passwd X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Jun 2003 13:23:58 -0000 Here is a list of libraries and files accessed by passwd from ktrace: Exec: /sbin/passwd /bin/passwd /usr/sbin/passwd Libraries: /usr/libexec/ld-elf.so.1 /usr/lib/libcrypt.so.2 /usr/lib/librpcsvc.so.2 /usr/lib/libutil.so.3 /usr/lib/libc.so.4 Files: /etc/malloc.conf /etc/spwd.db /etc/login.conf /etc/login.conf.db /etc/auth.conf /etc/master.passwd /etc/localtime Devices: /dev/tty /dev/urandom Enjoy... Peut -----Original Message----- From: Mark Redding [mailto:mwj_gb@yahoo.com] Sent: 06 June 2003 02:53 To: freebsd-questions@freebsd.org Subject: Re: passwd #snip# passwd needs to run setuid root, so it can write the new password to /etc/master.passwd: [homer: danielby: ~]$ ls -l `which passwd` -r-sr-xr-x 2 root wheel 32824 19 May 11:04 /usr/bin/passwd* You need to re-enable the setuid bit. #end-snip# That's not it I'm afraid. The setuid bit was set anyway, and anyway, users who are members of the wheel group can execute the passwd command without trouble (I've only switched off 'other' access). :-( =3D=3D=3D=3D=3D Mark W J Redding __________________________________________________ Yahoo! Plus - For a better Internet experience http://uk.promotions.yahoo.com/yplus/yoffer.html _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"