From owner-freebsd-doc@FreeBSD.ORG Thu Apr 1 05:44:23 2004 Return-Path: Delivered-To: freebsd-doc@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DB87916A4CE for ; Thu, 1 Apr 2004 05:44:23 -0800 (PST) Received: from anchor-post-33.mail.demon.net (anchor-post-33.mail.demon.net [194.217.242.91]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6886643D1D for ; Thu, 1 Apr 2004 05:44:23 -0800 (PST) (envelope-from mike@urgle.com) Received: from guylian.urgle.com ([80.177.40.54]) by anchor-post-33.mail.demon.net with esmtp (Exim 3.35 #1) id 1B92US-0006LJ-0X; Thu, 01 Apr 2004 14:44:16 +0100 Received: from mike by guylian.urgle.com with local (Exim 4.30; FreeBSD) id 1B92UR-000GAz-O2; Thu, 01 Apr 2004 13:44:15 +0000 Date: Thu, 1 Apr 2004 14:44:15 +0100 From: Mike Bristow To: doc@freebsd.org Message-ID: <20040401134415.GA60102@urgle.com> References: <001c01c417cf$1aa61e60$0200000a@BORG1of5> <20040401115512.GA7320@peach.veggie.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20040401115512.GA7320@peach.veggie.com> User-Agent: Mutt/1.5.6i cc: Grant cc: freebsd-users@uk.freebsd.org Subject: Re: is this normal? X-BeenThere: freebsd-doc@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Documentation project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Apr 2004 13:44:24 -0000 On Thu, Apr 01, 2004 at 12:55:12PM +0100, Frank Shute wrote: > http://www2.uk.freebsd.org/doc/en_US.ISO8859-1/books/faq/security.html#TOOR-ACCOUNT (this page says that toor was created when bash was installed) I'm not sure that that is correct: version 1.1 of etc/master.passwd has toor, and searching for log messages regarding the Resu Repus makes me think that toor has been in FreeBSD's default install for at least the last 10 years. In fact, I think that FreeBSD inhreited it from 386BSD - it's in the imported versiopn of the file (version 1.1.1.1) There is also no mention of 'toor' in the cvs logs for shells/bash1 (which goes back to mid '94), which I'd expect at least when the port stopped adding toor. As there is no mention of that, and the port doesn't add toor today, I don't think it ever did. Perhaps the following patch should be applied (if I've guessed the right file to patch): --- book.sgml.old Thu Apr 1 14:36:27 2004 +++ book.sgml Thu Apr 1 14:38:54 2004 @@ -8888,9 +8888,8 @@ Do not worry. toor is an alternative superuser account (toor is root - spelt backwards). Previously it was created when the - &man.bash.1; shell was installed but now it is created by - default. It is intended to be used with a non-standard shell so + spelt backwards). + It is intended to be used with a non-standard shell so you do not have to change root's default shell. This is important as shells which are not part of the base distribution (for example a shell installed from ports or -- You dont have to be illiterate to use the Internet, but it help's.