From owner-freebsd-hackers Thu Oct 30 09:18:39 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id JAA22290 for hackers-outgoing; Thu, 30 Oct 1997 09:18:39 -0800 (PST) (envelope-from owner-freebsd-hackers) Received: from roguetrader.com (brandon@cold.org [206.81.134.103]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id JAA22285 for ; Thu, 30 Oct 1997 09:18:36 -0800 (PST) (envelope-from brandon@roguetrader.com) Received: from localhost (brandon@localhost) by roguetrader.com (8.8.5/8.8.5) with SMTP id KAA00534 for ; Thu, 30 Oct 1997 10:18:38 -0700 (MST) Date: Thu, 30 Oct 1997 10:18:37 -0700 (MST) From: Brandon Gillespie To: freebsd-hackers@freebsd.org Subject: Suggested addition to /etc/security Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk I'm not sure if /etc/security is a good place for it, but I think it would be a good idea to add this check (at least once a week) to somewhere: ------------------------------------------------- echo "checking for invalid user or group ids:" find / -nouser -nogroup ------------------------------------------------- I have users come and go a lot, and some are in projects, so their files can be scattered around the filesystem--not just in their home directory. I've added this to my security check, and it helps me to keep on top of things. Since (I think?) the default action of 'pw' and most other user add programs is to reuse ids, this is also a security concern.. -Brandon Gillespie