From owner-freebsd-stable Sat Nov 3 9:50:17 2001 Delivered-To: freebsd-stable@freebsd.org Received: from klima.physik.uni-mainz.de (klima.Physik.Uni-Mainz.DE [134.93.180.162]) by hub.freebsd.org (Postfix) with ESMTP id 1297C37B416; Sat, 3 Nov 2001 09:50:02 -0800 (PST) Received: from klima.Physik.Uni-Mainz.DE (klima.Physik.Uni-Mainz.DE [134.93.180.162]) by klima.physik.uni-mainz.de (8.11.6/8.11.4) with ESMTP id fA3Hnd377032; Sat, 3 Nov 2001 18:49:39 +0100 (CET) (envelope-from ohartman@klima.physik.uni-mainz.de) Date: Sat, 3 Nov 2001 18:49:39 +0100 (CET) From: "Hartmann, O." To: Warner Losh Cc: Matthew Seaman , AMAKAWA Shuhei , , Subject: Re: NIS/YP problems using pw(8) In-Reply-To: <200111030314.fA33Ei794774@harmony.village.org> Message-ID: <20011103184411.A76915-100000@klima.physik.uni-mainz.de> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Fri, 2 Nov 2001, Warner Losh wrote: On the other hand, besides this studies of development, is there a chance of getting a NIS/YP compatible and useful pw in the future? As I follow the recommendations given in READMEs in /var/yp from FBSD, it is said to be usefull to set up dedicated directories for each domain to keep the servers /etc free of net wide user's stuff. But setting up a such environment is totaly free from useful tools like pw. pw should be able to handle multi domain setups on NIS/YP servers under the aspect of appropriate security aspects. Thanks. P.S. Only a foolish opinion, I think, but hope FreeBSD gets more usefull by this in future in big networks. pw is a very mighty tool managin user additions and subtractions from a LAN management maintained by a raw FBSD system (without additional software which means additional maintainance). :>In message <3BD94295.24C7A9C@tornadogroup.com> Matthew Seaman writes: :>: +static int :>: +issecure(const char *etcpath) :>: +{ :>: + struct stat stat_buf; :>: + int ret; :>: + int rc = 0; :>: + :>: + ret = lstat(etcpath, &stat_buf); :>: + if (ret == 0 && \ :>: + stat_buf.st_uid == 0 && \ :>: + S_ISDIR(stat_buf.st_mode) && \ :>: + (stat_buf.st_mode & (S_IWGRP|S_IWOTH)) == 0) { :>: + rc = 1; :>: + } :>: + return rc; :>: } :> :>First, you don't need \ at the end of the line. :>Second, this is racible. :> :>Warner :> -- MfG O. Hartmann ohartman@klima.physik.uni-mainz.de ---------------------------------------------------------------- IT-Administration des Institutes fuer Physik der Atmosphaere (IPA) ---------------------------------------------------------------- Johannes Gutenberg Universitaet Mainz Becherweg 21 55099 Mainz Tel: +496131/3924662 (Maschinenraum) Tel: +496131/3924144 FAX: +496131/3923532 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message