From owner-freebsd-security  Fri Mar  2  2:15: 8 2001
Delivered-To: freebsd-security@freebsd.org
Received: from axis.tdd.lt (axis.tdd.lt [193.219.211.5])
	by hub.freebsd.org (Postfix) with ESMTP id 51BCC37B719
	for <freebsd-security@FreeBSD.ORG>; Fri,  2 Mar 2001 02:15:00 -0800 (PST)
	(envelope-from domas.mituzas@delfi.lt)
Received: from localhost (midom@localhost)
	by axis.tdd.lt (8.11.1/8.11.1) with ESMTP id f22AE6O88313;
	Fri, 2 Mar 2001 12:14:06 +0200 (EET)
Date: Fri, 2 Mar 2001 12:14:05 +0200 (EET)
From: Domas Mituzas <domas.mituzas@delfi.lt>
X-Sender: midom@axis.tdd.lt
To: Matt Heckaman <matt@LUCIDA.CA>
Cc: mudman <mudman@R181204.resnet.ucsb.edu>,
	freebsd-security@FreeBSD.ORG
Subject: Re: /etc/pwd.db
In-Reply-To: <Pine.BSF.4.33.0103020316130.71111-100000@epsilon.lucida.ca>
Message-ID: <Pine.BSF.4.21.0103021212400.87639-100000@axis.tdd.lt>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

> 
> Better yet: pwd.db doesn't even contain any passwords! It's the functional
> equiv. of /etc/passwd. spwd.db contains the real passwords and is mode
> 0600 root:wheel. :)

actually if you keep some fake MD5 strings in $FTPROOT/etc/passwd it would
be a nice trap for all wannabe's (and also will point out totally stupid
clients ;-)

Cheers,
Domas


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message