From owner-freebsd-security  Fri Dec  8  6: 2:28 2000
From owner-freebsd-security@FreeBSD.ORG  Fri Dec  8 06:02:27 2000
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from apollo.ocsny.com (apollo.ocsny.com [204.107.76.2])
	by hub.freebsd.org (Postfix) with ESMTP id 9403F37B400
	for <freebsd-security@FreeBSD.ORG>; Fri,  8 Dec 2000 06:02:26 -0800 (PST)
Received: from upan.org (fw234.ocsny.com [204.107.76.234])
	by apollo.ocsny.com (8.9.2/8.9.3) with ESMTP id JAA28740;
	Fri, 8 Dec 2000 09:02:38 -0500 (EST)
Message-ID: <3A30E982.202E82A2@upan.org>
Date: Fri, 08 Dec 2000 09:00:34 -0500
From: mikel <mikel@upan.org>
X-Mailer: Mozilla 4.73 [en] (Windows NT 5.0; I)
X-Accept-Language: en
MIME-Version: 1.0
To: Matt Chew Spence <matt@nren.nasa.gov>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: toor account
References: <Pine.SUN.4.30.0012071435460.11696-100000@obivon.nren.nasa.gov>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

toor does not have the same login restrictions as root...refer to
/etc/login.access The account is linked to bash. Use it. Delete it. Ignor
it. recommend atleast you set your own password for it.

cheers,
mikel

Matt Chew Spence wrote:

> If:
> 1) I am running a relatively fast machine (no vaxen here)
> 2) I am not worried about forgetting the root password or corrupting
> root's shell
> 3) The box is not production and can be taken into single user mode w/o
> impacting much of anyone
>
> would the toor account have any useful purpose, or can I just blow it
> away?
>
> Bonus question:  Are the root restrictions (ie no tty login, no console
> login, no ssh login) and logging automatically relevant to toor, or do I
> need to configure all that stuff explicitly for toor?
>
> Thanks,
>
> Matt
>
> _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
> Matt Chew Spence                Network Engineer/Systems Engineer
> matt@nren.nasa.gov              NASA Research & Education Network
> (650) 604-4550  (voice)         Ames Research Center Mail Stop 233-21
> (650) 604-3080  (fax)           Moffett Field, CA 94035-1000
> _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message