Date: Sun, 9 Feb 1997 13:38:16 -0700 (MST) From: Terry Lambert <terry@lambert.org> To: W.Belgers@nl.cis.philips.com (Walter Belgers) Cc: terry@lambert.org, freebsd-hackers@FreeBSD.ORG Subject: Re: NIS/uids Message-ID: <199702092038.NAA25201@phaeton.artisoft.com> In-Reply-To: <199702071015.LAA03051@giga.lss.cp.philips.com> from "Walter Belgers" at Feb 7, 97 11:15:52 am
next in thread | previous in thread | raw e-mail | index | archive | help
> > > I have no "+" in my password file, only "+user", so you can only hack
> > > those users, not the users that are only locally in my password file. So
> > > it does give the desired protection.
> >
> > Do you do "+group" in the group file, as well? I suppose you have to...
>
> No, I don't mind wether or not all gids are in the group file. If a NIS
> user is in group 999 which doesn't locally exists, so be it.
What about groups 0 ("can su to root"), 2 ("can grope kernel memory"), or
4 ("can grope tty input").
Terry Lambert
terry@lambert.org
---
Any opinions in this posting are my own and not those of my present
or previous employers.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199702092038.NAA25201>