From owner-freebsd-questions Thu Feb 1 23:38:38 2001 Delivered-To: freebsd-questions@freebsd.org Received: from hotmail.com (f43.law9.hotmail.com [64.4.9.43]) by hub.freebsd.org (Postfix) with ESMTP id 98B5637B491 for ; Thu, 1 Feb 2001 23:38:21 -0800 (PST) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Thu, 1 Feb 2001 23:38:21 -0800 Received: from 209.244.181.177 by lw9fd.law9.hotmail.msn.com with HTTP; Fri, 02 Feb 2001 07:38:21 GMT X-Originating-IP: [209.244.181.177] From: "gerald stoller" To: gene_dinkey@hp.com, freebsd-questions@freebsd.org Subject: RE: UID at login time Date: Fri, 02 Feb 2001 02:38:21 -0500 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 02 Feb 2001 07:38:21.0388 (UTC) FILETIME=[1DF088C0:01C08CEB] Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG >From: "DINKEY,GENE (HP-Loveland,ex1)" To: "'gerald stoller'" , >freebsd-questions@freebsd.org Subject: RE: UID at login time Date: Thu, 1 >Feb 2001 16:41:31 -0700 > > > -----Original Message----- > From: gerald stoller >[mailto:gerald_stoller@hotmail.com] > Sent: Thursday, February 01, 2001 >2:32 PM > To: freebsd-questions@freebsd.org > Subject: UID at login time > > > I went into /etc/passwd and changed my UID there from 1000 to 1001 > > >When you did this did you just vi /etc/passwd or did you use vipw? If >editing the passwd file by hand vipw should be used so master.passwd gets >updated properly. > >Gene gder@gder.net I used vi /etc/passwd ; after seeing 'vipw' in your email, I recall seeing it mentioned in my reading about FreeBSD , and I thought it was just a safety feature at the time (e.g., it wouldn't let you modift the password field). I have since used vipw and the problem is gone. Thanks for your help. This system (of having both master.passwd & passwd ) is not the right way to provide a safeguard, IMHO. Yes, have a backup file to passwd , but use it only for backup. passwd would be readable by everybody but writeable only by root . A cron job could compare the two files on a regular basis, and email to root when they differ, root would then check the differences, and if they are not destabilizing (e.g., someone changed their login shell ), would copy passwd onto its backup copy. For a more robust system (which I believe to be necessary only to reassure users, and could be dropped after they feel comfortable), one could keep a month-long history of these backup files, so that if a change was made and accepted, and later a user notices a change in operation due to a change (he believes) in his entry in passwd , older copies of his entry can be found and checked (and used to reassure him). _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message