From owner-freebsd-security Wed May 10 5:53: 7 2000 Delivered-To: freebsd-security@freebsd.org Received: from infidel.boolean.net (router.boolean.net [198.144.206.49]) by hub.freebsd.org (Postfix) with ESMTP id 62F1837B711 for ; Wed, 10 May 2000 05:52:56 -0700 (PDT) (envelope-from Kurt@OpenLDAP.org) Received: from gypsy (gypsy.boolean.net [198.144.202.243]) by infidel.boolean.net (8.9.3/8.9.3) with SMTP id MAA58078; Wed, 10 May 2000 12:52:47 GMT (envelope-from Kurt@OpenLDAP.org) Message-Id: <3.0.5.32.20000510055246.009b9100@infidel.boolean.net> X-Sender: guru@infidel.boolean.net X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Wed, 10 May 2000 05:52:46 -0700 To: Peter van Dijk From: "Kurt D. Zeilenga" Subject: Re: envy.vuurwerk.nl daily run output Cc: security@FreeBSD.ORG In-Reply-To: <20000510140053.G46065@vuurwerk.nl> References: <20000509215515.B29766@cc942873-a.ewndsr1.nj.home.com> <20000509150609.L42267@vuurwerk.nl> <20000509215515.B29766@cc942873-a.ewndsr1.nj.home.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 02:00 PM 5/10/00 +0200, Peter van Dijk wrote: >On Tue, May 09, 2000 at 09:55:16PM -0400, Crist J. Clark wrote: >> On Tue, May 09, 2000 at 03:06:09PM +0200, Peter van Dijk wrote: >> > [snip] >> > >> > Backup passwd and group files: >> > envy.vuurwerk.nl passwd diffs: >> > 3c3 >> > < root:(password):0:0::0:0:Charlie &:/root:/usr/local/bin/bash >> > --- >> > > root:(password):0:0::0:0:Charlie &:/root:/usr/local/bin/bash >> > [snip] Actually, the use of "password" could mask a change... consider < root:(password):0:0::0:0:Charlie &:/root:/usr/local/bin/bash --- > root:(password):0:0::0:0:Charlie &:/root:/usr/local/bin/tcsh The admin would likely assume only the shell has changed even though password may have changed. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message