From owner-freebsd-security Mon Mar 3 10: 5:20 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BFB5B37B401 for ; Mon, 3 Mar 2003 10:05:17 -0800 (PST) Received: from gandalf.online.bg (gandalf.online.bg [217.75.128.9]) by mx1.FreeBSD.org (Postfix) with SMTP id 278C343FE1 for ; Mon, 3 Mar 2003 10:05:14 -0800 (PST) (envelope-from roam@ringlet.net) Received: (qmail 5458 invoked from network); 3 Mar 2003 18:01:01 -0000 Received: from office.sbnd.net (HELO straylight.ringlet.net) (217.75.140.130) by gandalf.online.bg with SMTP; 3 Mar 2003 18:01:01 -0000 Received: (qmail 6743 invoked by uid 1000); 3 Mar 2003 18:03:50 -0000 Date: Mon, 3 Mar 2003 20:03:50 +0200 From: Peter Pentchev To: Martin McCormick Cc: freebsd-security@FreeBSD.ORG Subject: Re: Permission Denied on passwd Message-ID: <20030303180350.GA6597@straylight.oblivion.bg> Mail-Followup-To: Martin McCormick , freebsd-security@FreeBSD.ORG References: <200303031528.h23FScje002664@dc.cis.okstate.edu> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="+HP7ph2BbKc20aGI" Content-Disposition: inline In-Reply-To: <200303031528.h23FScje002664@dc.cis.okstate.edu> User-Agent: Mutt/1.5.3i Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --+HP7ph2BbKc20aGI Content-Type: text/plain; charset=windows-1251 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Mar 03, 2003 at 09:28:38AM -0600, Martin McCormick wrote: > What might cause all users except root to get "permission denied" > every time they try to change their passwords on a new system? >=20 > Here's the scenario: >=20 > $ passwd > Changing local password for martin. > Old password: > passwd: Permission denied > passwd: /etc/master.passwd: unchanged > $ >=20 > I have checked permissions on /etc/master.passwd and > /etc/passwd and they agree with the corresponding files on > another 4.7 system that works. >=20 > $ ls -l /etc/*passwd > -rw------- 1 root wheel 1605 Mar 3 08:12 /etc/master.passwd > -rw-r--r-- 1 root wheel 1367 Mar 3 08:12 /etc/passwd > $ cd / > $ ls -l |grep usr > drwxr-xr-x 16 root wheel 512 Nov 11 11:34 usr > $ ls -l /usr/bin/passwd > -r-sr-xr-x 2 root wheel 32504 Oct 9 07:51 /usr/bin/passwd Just a wild guess: you have not mounted /usr with the 'nosuid' mount option, have you? G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@sbnd.net roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 The rest of this sentence is written in Thailand, on --+HP7ph2BbKc20aGI Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+Y5kF7Ri2jRYZRVMRAkIOAKCReii8wSEfs/g2iuQpF/mmrLIXrACgniXS k/6oAViZIBOvaSCm1DYmB0o= =bjbU -----END PGP SIGNATURE----- --+HP7ph2BbKc20aGI-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message