From owner-freebsd-questions@FreeBSD.ORG Fri Jun 6 20:21:17 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8A0BF37B401 for ; Fri, 6 Jun 2003 20:21:17 -0700 (PDT) Received: from hotmail.com (bay8-f105.bay8.hotmail.com [64.4.27.105]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1806843FA3 for ; Fri, 6 Jun 2003 20:21:17 -0700 (PDT) (envelope-from unixtools@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Fri, 6 Jun 2003 20:21:16 -0700 Received: from 203.199.109.165 by by8fd.bay8.hotmail.msn.com with HTTP; Sat, 07 Jun 2003 03:21:15 GMT X-Originating-IP: [203.199.109.165] X-Originating-Email: [unixtools@hotmail.com] From: "Sunil Sunder Raj" To: mwj_gb@yahoo.com Date: Sat, 07 Jun 2003 08:51:15 +0530 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 07 Jun 2003 03:21:16.0319 (UTC) FILETIME=[DB120AF0:01C32CA3] cc: freebsd-questions@FreeBSD.ORG Subject: Re: passwd X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 07 Jun 2003 03:21:17 -0000 Hi, After tracing the passwd command I found these files being referred by the command. /sbin/passwd /var/run/ld-elf.so.hints /usr/lib/libkadm.so.3 /usr/lib/libkrb.so.3 /usr/lib/libcrypto.so.1 /usr/lib/libcrypt.so.2 /usr/lib/librpcsvc.so.2 /usr/lib/libcom_err.so.2 /usr/lib/libutil.so.3 /usr/lib/libc.so.4 /usr/lib/libcrypt.so.2 /etc/malloc.conf /etc/spwd.db /etc/auth.conf /dev/tty /dev/urandom /etc/master.passwd /etc/localtime /etc/passwd /var/run/log and access to the users' home directory. Regards SSR >From: Mark Redding >To: freebsd-questions@FreeBSD.ORG >Subject: passwd >Date: Fri, 6 Jun 2003 13:26:44 +0100 (BST) > >Hi all, > >I'm building a system (FreeBSD 4.7) which upon which I >wish the majority of users to only have extremely >limited access to (ie. to be able to telnet >elsewhere). > >One of the things I've done is to "chmod o-rwx" most >everything in /bin/ /sbin/ /usr/bin/ /usr/sbin/ and >/usr/libexec/ > >The only commands that users can access now are >"passwd" and "telnet" as I've changed permissions to >give them "r-x" access to these commands, and also to >/usr/libexec/ld.elf* > >The problem I have at present is that users can >telnet, but they cannot issue the passwd command >without getting :- > >passwd: permission denied > >Does anyone know what other commands passwd may be >trying to execute, or of any way I can 'trace' the >program to see what it's trying to do (I've KTRACE >switched OFF in the kernel and have no intention of >switching it on). > >thanks in advance, > >Mark Redding. > > >===== >Mark W J Redding > >__________________________________________________ >Yahoo! Plus - For a better Internet experience >http://uk.promotions.yahoo.com/yplus/yoffer.html >_______________________________________________ >freebsd-questions@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-questions >To unsubscribe, send any mail to >"freebsd-questions-unsubscribe@freebsd.org" _________________________________________________________________ Looking for love? Yearning for friendship? http://www.msn.co.in/Romance/ You're in the right place