From owner-cvs-src@FreeBSD.ORG Mon Sep 19 13:31:13 2005 Return-Path: X-Original-To: cvs-src@freebsd.org Delivered-To: cvs-src@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 93C6516A41F; Mon, 19 Sep 2005 13:31:13 +0000 (GMT) (envelope-from gavin.atkinson@ury.york.ac.uk) Received: from mail-gw0.york.ac.uk (mail-gw0.york.ac.uk [144.32.128.245]) by mx1.FreeBSD.org (Postfix) with ESMTP id E18E043D49; Mon, 19 Sep 2005 13:31:09 +0000 (GMT) (envelope-from gavin.atkinson@ury.york.ac.uk) Received: from buffy.york.ac.uk (buffy-128.york.ac.uk [144.32.128.160]) by mail-gw0.york.ac.uk (8.12.10/8.12.10) with ESMTP id j8JDV5O2017201; Mon, 19 Sep 2005 14:31:05 +0100 (BST) Received: from buffy.york.ac.uk (localhost [127.0.0.1]) by buffy.york.ac.uk (8.13.4/8.13.4) with ESMTP id j8JDV5fx026702; Mon, 19 Sep 2005 14:31:05 +0100 (BST) (envelope-from gavin.atkinson@ury.york.ac.uk) Received: (from ga9@localhost) by buffy.york.ac.uk (8.13.4/8.13.4/Submit) id j8JDV40C026701; Mon, 19 Sep 2005 14:31:04 +0100 (BST) (envelope-from gavin.atkinson@ury.york.ac.uk) X-Authentication-Warning: buffy.york.ac.uk: ga9 set sender to gavin.atkinson@ury.york.ac.uk using -f From: Gavin Atkinson To: Giorgos Keramidas In-Reply-To: <20050918203109.GA1419@flame.pc> References: <200509181540.j8IFe2LR042274@repoman.freebsd.org> <20050918200104.F89636@ury.york.ac.uk> <20050918203109.GA1419@flame.pc> Content-Type: text/plain Content-Transfer-Encoding: 7bit Date: Mon, 19 Sep 2005 14:31:04 +0100 Message-Id: <1127136664.25814.11.camel@buffy.york.ac.uk> Mime-Version: 1.0 X-Mailer: Evolution 2.2.3 FreeBSD GNOME Team Port X-York-MailScanner: Found to be clean X-York-MailScanner-From: gavin.atkinson@ury.york.ac.uk Cc: cvs-src@freebsd.org, src-committers@freebsd.org, cvs-all@freebsd.or Subject: Re: cvs commit: src/share/man/man5 passwd.5 X-BeenThere: cvs-src@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the src tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 Sep 2005 13:31:13 -0000 On Sun, 2005-09-18 at 23:31 +0300, Giorgos Keramidas wrote: > On 2005-09-18 20:16, Gavin Atkinson wrote: > > On Sun, 18 Sep 2005, Giorgos Keramidas wrote: > > > Modified files: > > > share/man/man5 passwd.5 > > > Log: > > > Explain the use of `*' in master.passwd and that it's slightly > > > different from the use of `*' in /etc/passwd. > > > > +.Nm master.passwd > > +file, a password of > > +.Ql * > > +is used to indicate that no one can ever log into that account. > > +The field only contains encrypted passwords, and > > +.Ql * > > +can never be the result of encrypting a password. > > > > This is not strictly true - all it prevents is logins using passwords. > > Passwordless logins using SSH public keys (for example) are unaffected. > > > > Perhaps the attached patch chould be committed? > > Yeah, I've been talking with simon@ about this. I was preparing to > commit something similar, see below: > > % Index: passwd.5 > % =================================================================== > % RCS file: /home/ncvs/src/share/man/man5/passwd.5,v > % retrieving revision 1.45 > % diff -u -r1.45 passwd.5 > % --- passwd.5 18 Sep 2005 15:40:02 -0000 1.45 > % +++ passwd.5 18 Sep 2005 20:30:21 -0000 > % @@ -110,7 +110,11 @@ > % .Nm master.passwd > % file, a password of > % .Ql * > % -is used to indicate that no one can ever log into that account. > % +is used to indicate that no one can ever log into that account > % +using password authentication (logins through other forms of > % +authentication, i.e.\& using > % +.Xr ssh 1 > % +keys, will still work). > % The field only contains encrypted passwords, and > % .Ql * > % can never be the result of encrypting a password. I think that would be perfect. Gavin