From owner-freebsd-questions@FreeBSD.ORG Wed Dec 30 14:19:57 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 794A5106566B for ; Wed, 30 Dec 2009 14:19:57 +0000 (UTC) (envelope-from lars@larseighner.com) Received: from mail.team1internet.com (mail.team1internet.com [216.110.13.10]) by mx1.freebsd.org (Postfix) with ESMTP id 569608FC1B for ; Wed, 30 Dec 2009 14:19:57 +0000 (UTC) Received: by mail.team1internet.com (Postfix, from userid 12346) id 86DF316B51E; Wed, 30 Dec 2009 08:19:56 -0600 (CST) Received: from larseighner.com (unknown [216.110.13.80]) by mail.team1internet.com (Postfix) with SMTP id C172916B50D; Wed, 30 Dec 2009 08:19:54 -0600 (CST) Received: by larseighner.com (nbSMTP-1.00) for uid 1001 lars@larseighner.com; Wed, 30 Dec 2009 08:09:16 -0600 (CST) Date: Wed, 30 Dec 2009 08:09:14 -0600 (CST) From: Lars Eighner X-X-Sender: lars@debranded.6dollardialup.com To: Matthew Seaman In-Reply-To: <4B3B53B5.7040601@infracaninophile.co.uk> Message-ID: <20091230080857.L54092@qroenaqrq.6qbyyneqvnyhc.pbz> References: <20091230123341.GC36440@mech-cluster241.men.bris.ac.uk> <4B3B53B5.7040601@infracaninophile.co.uk> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Sanitizer: Anomy and SpamAssassin mail filter - see http://www.6dollardialup.com/support/spaminfo.html Cc: Anton Shterenlikht , freebsd-questions@freebsd.org Subject: Re: does toor have passwd or not? According to logins -p: yes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Dec 2009 14:19:57 -0000 On Wed, 30 Dec 2009, Matthew Seaman wrote: > Anton Shterenlikht wrote: >> I was checking for passwordless accounts with 'logins -p'. >> None was found. However, I understand toor doesn't have >> passwd by default, and I never touched it, so I expected >> logins -p to show toor, but it didn't. >> >> Just to check I also tried to su toor with root passwd - no access. >> Please can somebody clarify if toor does indeed have >> passwd. > > If there's nothing in the second field, then you have a problem, as that > means the account has a NULL password (ie. just hit return when prompted > for a password -- I've been wrong before, but I think you do not get a password prompt at all, at least not on login. You enter the login: name and you are off to motd and a command prompt. > this is what 'logins -p' detects). That may or may not > actually work to get into the toor account depending on how you're trying > to authenticate and on various other security settings eg. in /etc/pam.d, > but even so it is something that should be fixed pronto. Use vipw(8) to > edit master.passwd and insert a * -- vipw will regenerate /etc/passwd and > pwd.db automatically for you. -- Lars Eighner http://www.larseighner.com/index.html 8800 N IH35 APT 1191 AUSTIN TX 78753-5266