From owner-freebsd-hackers Tue Jan 18 14: 2:15 2000 Delivered-To: freebsd-hackers@freebsd.org Received: from penelope.skunk.org (penelope.skunk.org [208.133.204.51]) by hub.freebsd.org (Postfix) with ESMTP id AF311151E9 for ; Tue, 18 Jan 2000 14:02:09 -0800 (PST) (envelope-from ben@penelope.skunk.org) Received: from localhost (ben@localhost) by penelope.skunk.org (8.9.3/8.9.3) with ESMTP id RAA66778 for ; Tue, 18 Jan 2000 17:14:26 -0500 (EST) Date: Tue, 18 Jan 2000 17:14:26 -0500 (EST) From: Ben Rosengart To: hackers@freebsd.org Subject: locked accounts and adduser Message-ID: MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="0-879138456-948233666=:64214" Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. Send mail to mime@docserver.cac.washington.edu for more info. --0-879138456-948233666=:64214 Content-Type: TEXT/PLAIN; charset=US-ASCII I thought it would be nice if one could create locked accounts with adduser. So I asked my nice Perl-hacking coworker Evan Leon to come up with a patch. Enter password []: Use an empty password or lock the password? lock no [yes]: lock ... # grep user /etc/master.passwd user:*:1001:1001::0:0:Joe User:/home/user:/bin/sh The patch is attached. Anyone like it? Any chance it could be committed? I find it useful in two situations: 1) Sometimes I want to install someone's public key instead of giving them a password. That way, I don't need a secure channel over which to communicate the password. 2) Other times, I'm going to be pasting a hashed password directly into the master.passwd file, and this is a convenient way of locking the account until I do that. Another idea I have is to allow adduser to accept a hashed password instead of a plaintext one. Perhaps if this goes over well, Evan and I will work on that next. -- Ben Rosengart UNIX Systems Engineer, Skunk Group StarMedia Network, Inc. --0-879138456-948233666=:64214 Content-Type: TEXT/PLAIN; charset=US-ASCII; name="adduser.patch" Content-Transfer-Encoding: BASE64 Content-ID: Content-Description: Content-Disposition: attachment; filename="adduser.patch" LS0tIC91c3Ivc2Jpbi9hZGR1c2VyCVRodSBKYW4gMTMgMTI6MjA6MzggMjAw MA0KKysrIGFkZHVzZXIJVHVlIEphbiAxOCAxNjo1NzowNSAyMDAwDQpAQCAt NjQ5LDEzICs2NDksMTcgQEANCiAJICAgIGxhc3QgaWYgJHBhc3N3b3JkIGVx ICRuZXdwYXNzOw0KIAkgICAgcHJpbnQgIlRoZXkgZGlkbid0IG1hdGNoLCBw bGVhc2UgdHJ5IGFnYWluXG4iOw0KIAl9DQotCWVsc2lmICgmY29uZmlybV95 bigiVXNlIGFuIGVtcHR5IHBhc3N3b3JkPyIsICJ5ZXMiKSkgew0KLQkgICAg bGFzdDsNCi0JfQ0KKyAgICAgICAgZWxzZSB7DQorICAgICAgICAgICAkbG9j a3Bhc3MgPSAmY29uZmlybV9saXN0KCJVc2UgYW4gZW1wdHkgcGFzc3dvcmQg b3IgbG9jayB0aGUgcGFzc3dvcmQ/IiwgMCwgInllcyIsICJubyIsICJsb2Nr Iik7DQorICAgICAgICAgICBpZiAoJGxvY2twYXNzIG5lICJubyIpIHsNCisg ICAgICAgICAgICBsYXN0Ow0KKyAgICAgICAgICAgfQ0KKyAgICAgICAgfQ0K KyAgICB9ICANCisgICAgaWYgKCRsb2NrcGFzcyA9PSAibG9jayIpIHsNCisg ICAgICAkcGFzc3dvcmQgPSAiKiI7IA0KICAgICB9DQotDQotICAgIHJldHVy biAkcGFzc3dvcmQ7DQotfQ0KK30gICANCiANCiANCiBzdWIgbmV3X3VzZXJz IHsNCkBAIC03MDMsNyArNzA3LDEyIEBADQogCSAgICAkbmV3X3VzZXJzX29r ID0gMTsNCiANCiAJICAgICRjcnlwdHB3ZCA9ICIiOw0KLQkgICAgJGNyeXB0 cHdkID0gY3J5cHQoJHBhc3N3b3JkLCAmc2FsdCkgaWYgJHBhc3N3b3JkIG5l ICIiOw0KKyAgICAgICAgICAgIGlmICgkcGFzc3dkID09ICIqIikgew0KKyAg ICAgICAgICAgICAgJGNyeXB0cHdkID0gIioiOw0KKyAgICAgICAgICAgIH0g DQorICAgICAgICAgICAgZWxzZSB7DQorICAgICAgICAgICAgICAkY3J5cHRw d2QgPSBjcnlwdCgkcGFzc3dvcmQsICZzYWx0KSBpZiAkcGFzc3dvcmQgbmUg IiI7DQorICAgICAgICAgICAgfQ0KIAkgICAgIyBvYnNjdXJlIHBlcmwgYnVn DQogCSAgICAkbmV3X2VudHJ5ID0gIiRuYW1lXDoiIC4gIiRjcnlwdHB3ZCIg Lg0KIAkJIlw6JHVfaWRcOiRnX2lkXDokY2xhc3NcOjA6MDokZnVsbG5hbWU6 JHVzZXJob21lOiRzaCI7DQpAQCAtMTM5MiwzICsxNDAxLDUgQEANCiAmbmV3 X3VzZXJzOwkgICAgICMgYWRkIG5ldyB1c2Vycw0KIA0KICNlbmQNCisNCisN Cg== --0-879138456-948233666=:64214-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message