Date: Tue, 3 Apr 2001 12:11:03 +0200 (CEST) From: =?ISO-8859-1?Q?Trond_Endrest=F8l?= <trond@ramstind.gtf.ol.no> To: Greg Lehey <grog@lemis.com> Cc: Aaron Hill <hillaa@hotmail.com>, <freebsd-questions@freebsd.org> Subject: Re: Is there an equivalent of newgrp in FreeBSD? Message-ID: <Pine.BSF.4.31.0104031159400.3873-100000@ramstind.gtf.ol.no> In-Reply-To: <20010403105642.B71213@wantadilla.lemis.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 3 Apr 2001, Greg Lehey wrote: > On Monday, 2 April 2001 at 22:53:33 +0000, Aaron Hill wrote: > > Solaris uses this field. To get a password into the field you have to copy > > and paste it from /etc/shadow. The password is then used by the newgrp > > command. I don't know about FreeBSD but for the above explained reasons I > > don't see why this field would be needed... ? > > According to group(5), it exists. I haven't checked the source code, > but I also can't see what use it might be. Well, I have currently no plan to use this feature, even if it's ready to be used. One use I just thought about is where security must be as tight as possible: If a user fails to login with the password for some group, then the user will not be granted the privileges associated with this group. To regain the lost privileges, the user must either login again or use some variety of newgrp requiring entering the correct group password. I don't know about login via SSH on such a system. -- ---------------------------------------------------------------------- Trond Endrestøl | trond@ramstind.gtf.ol.no Patron of The Art of Computer Programming| FreeBSD 3.5-S & Pine 4.31 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.31.0104031159400.3873-100000>