From owner-freebsd-arch@FreeBSD.ORG Wed Aug 3 23:05:44 2005 Return-Path: X-Original-To: freebsd-arch@freebsd.org Delivered-To: freebsd-arch@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8BCD216A41F; Wed, 3 Aug 2005 23:05:44 +0000 (GMT) (envelope-from arno@heho.snv.jussieu.fr) Received: from shiva.jussieu.fr (shiva.jussieu.fr [134.157.0.129]) by mx1.FreeBSD.org (Postfix) with ESMTP id C76B643D46; Wed, 3 Aug 2005 23:05:43 +0000 (GMT) (envelope-from arno@heho.snv.jussieu.fr) Received: from heho.snv.jussieu.fr (heho.snv.jussieu.fr [134.157.184.22]) by shiva.jussieu.fr (8.12.11/jtpda-5.4) with ESMTP id j73N5gcg000335 ; Thu, 4 Aug 2005 01:05:42 +0200 (CEST) X-Ids: 168 Received: from heho.snv.jussieu.fr (localhost [127.0.0.1]) by heho.snv.jussieu.fr (8.13.3/jtpda-5.2) with ESMTP id j73N5ebj008434 ; Thu, 4 Aug 2005 01:05:40 +0200 (MEST) Received: (from arno@localhost) by heho.snv.jussieu.fr (8.13.3/8.13.1/Submit) id j73N5eoM008431; Thu, 4 Aug 2005 01:05:40 +0200 (MEST) (envelope-from arno) To: Doug Barton References: <53d4293a37f280317d52338c2fc6fc6d@FreeBSD.org> <20050612025402.GD67746@dragon.NUXI.org> <200506151655.52894.jhb@FreeBSD.org> <20050616010629.GA3554@hub.freebsd.org> <42EEC3B9.1090507@FreeBSD.org> From: "Arno J. Klaassen" Date: 04 Aug 2005 01:05:40 +0200 In-Reply-To: <42EEC3B9.1090507@FreeBSD.org> Message-ID: Lines: 46 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.3 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-1.7.2 (shiva.jussieu.fr [134.157.0.168]); Thu, 04 Aug 2005 01:05:42 +0200 (CEST) X-Antivirus: scanned by sophie at shiva.jussieu.fr X-Miltered: at shiva.jussieu.fr with ID 42F14DC6.000 by Joe's j-chkmail (http://j-chkmail.ensmp.fr)! Cc: freebsd-arch@freebsd.org Subject: Re: Death to toor X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 03 Aug 2005 23:05:44 -0000 Doug Barton writes: > Arno J. Klaassen wrote: > > Hello, > > [ stuff deleted ] > > > >>>>>Is there any good reason to keep the toor account around nowadays? > >>>> > >>>>Yes. Some of us use it. > > from a user point of view, I use toor on all machines, basically for > > two reasons : > > - I don't feel confident to change default root shell > > As long as you change it to another shell that is provided by the > system (in this case /bin/sh) you'll be fine here. I've done this for > years. My .profile tests to see if bash is available, and execs it if > so. yop, i did it that way before; but I got tired of all tests in .profile, .bash_profile, .bashrc (mixing gdm and ssh on the same box gives me the same headaches of not taking the time to figure out exactly which shell uses what file, in what order and overruled by what environment ...) > Note, I'm not saying that we should get rid of toor, quite the > opposite, I think we should keep it. me too, but in that case including /bin/bash in the base-system would be a nice thing as well, or at least a shells/bash-root port or something like that. my first thing on each new installation is statically build shells/bash and copy to /bin > > - quite a lot of my customors "need/want" root access (including the > > possibility to change it's passwd); keeping a toor account with a well > > kept secret by me passwd saves me a lot of trouble (a part from > > systems needing root passwd for catastrophic single user boot) > > That's an entirely different situation. yes, but imho a good reason to keep the toor account at least mentionned in the base system. I'm still glad my mentor explained me X years ago its existence. Naturally a newbie sysadmin thinks there is just one and only root. Arno