Date: Tue, 20 Jul 1999 16:54:22 -0400 (EDT) From: Chris <chrismar@shasta.eclipse.net> To: Ilia Chipitsine <ilia@cgilh.chel.su> Cc: Todd Backman <todd@wank.necropolis.org>, questions@FreeBSD.ORG Subject: Re: passwd Message-ID: <Pine.BSF.4.10.9907201650070.32492-100000@shasta.eclipse.net> In-Reply-To: <Pine.BSF.4.05.9907202346300.361-100000@localhost.cgu.chel.su>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Depending on how much the root holders know you might be able to fool them by writing a simple wrapper shell script. Something like #!/bin/sh if [ $1 = toor ]; then echo "Cannot change password for toor." else passwd.real $1 fi You would rename the real passwd to passwd.real and put the shell script in as passwd. Oh, and I haven't verified the above script to work, its just an idea. Chris On Tue, 20 Jul 1999, Ilia Chipitsine wrote: > On Mon, 19 Jul 1999, Todd Backman wrote: > > > > > Is there any way to hack FreeBSD's passwd utility to dis-allow root from > > root has UID equal to 0. once it happened you can do whatever you want. > > > changing toor's passwd? I have approx. 15 boxen for external customers > > that I would like to passwd 'toor' so our NOC people do not have to know > > root for each customer. Customers can have thier own root passwd and the > > NOC folk can have 'toor' for reboots and such. We *do not* want root to be > > just enable sudo for them. well, root is still able to change their > passwords. but they are _restricted_ ! > > (not sudo for toor :-), just sudo for regular user with > UID different from 0) > > > able to change toor's passwd... > > > > Any input? > > > > Thanks. > > > > - Todd > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQB1AwUBN5TiAfbh8rV07zbRAQG/OwL/dtCilBoL7LBIlc+DHCnD7g5Zb/JZUpRF aEeGV+u3pT7BdsThEv66kkWMMMeqGNr+VotzotZDUcgDHY+i1pVWOQK/7WTuOHJe OnQ3wMKwx5NvESoI+HRqt1Xw/4RkGW9M =TRAA -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9907201650070.32492-100000>