From owner-freebsd-questions  Tue Dec  1 10:33:09 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id KAA29078
          for freebsd-questions-outgoing; Tue, 1 Dec 1998 10:33:09 -0800 (PST)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from cm110119.cableco-op.com (cm110119.cableco-op.com [206.24.110.119])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA29070
          for <freebsd-questions@freebsd.org>; Tue, 1 Dec 1998 10:33:06 -0800 (PST)
          (envelope-from jwg@netbox.com)
Received: from localhost (jwg@localhost)
	by cm110119.cableco-op.com (8.8.8/8.8.8) with SMTP id KAA05188;
	Tue, 1 Dec 1998 10:35:23 -0800 (PST)
	(envelope-from jwg@netbox.com)
X-Authentication-Warning: cm110119.cableco-op.com: jwg owned process doing -bs
Date: Tue, 1 Dec 1998 10:35:23 -0800 (PST)
From: Jeff Gray <jwg@netbox.com>
X-Sender: jwg@cm110119.cableco-op.com
To: Questions at FreeBSD <freebsd-questions@FreeBSD.ORG>
Subject: /etc/passwd - how to protect from spammers
Message-ID: <Pine.BSF.3.96.981201103118.4117A-100000@cm110119.cableco-op.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

We run a multiuser system and as /etc/passwd is world readable it is easy
for a spammer to get access to our user list.  We limit access via a
restricted shell but do offer pine - easy to attach /etc/passwd.
Restricting pine so as to prohibit attachments would be a severe
restriction.

A client/user mentioned that in HP Unix there is a
chroot wrapper of some kind which can block this access.  Could not find
anything in the FreeBSD archives.

Suggestions welcomed.

Thanks
jeff



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message