Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 30 Oct 1997 10:18:37 -0700 (MST)
From:      Brandon Gillespie <brandon@roguetrader.com>
To:        freebsd-hackers@freebsd.org
Subject:   Suggested addition to /etc/security
Message-ID:  <Pine.BSF.3.96.971030101513.521A-100000@roguetrader.com>

next in thread | raw e-mail | index | archive | help
I'm not sure if /etc/security is a good place for it, but I think it would
be a good idea to add this check (at least once a week) to somewhere:

-------------------------------------------------
echo "checking for invalid user or group ids:"

find / -nouser -nogroup
-------------------------------------------------

I have users come and go a lot, and some are in projects, so their files
can be scattered around the filesystem--not just in their home directory.
I've added this to my security check, and it helps me to keep on top of
things.

Since (I think?) the default action of 'pw' and most other user add
programs is to reuse ids, this is also a security concern..

-Brandon Gillespie




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.971030101513.521A-100000>