Re: [8lgm]-Advisory-7.UNIX.passwd.11-May-1994

John Hawkinson (jhawk@panix.com)
Fri, 13 May 1994 15:25:51 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Steve Simmons: "Re: wolves and sheep on the inet"
Previous message: Gene Spafford: "Re: wolves and sheep on the inet"
In reply to: Howie Kaye: "Re: [8lgm]-Advisory-7.UNIX.passwd.11-May-1994"
Next in thread: Pat Myrto: "Re: [8lgm]-Advisory-7.UNIX.passwd.11-May-1994"

> From: Howie Kaye <howie@ivory.cc.columbia.edu>
> To: bugtraq@crimelab.com, cert@cert.org, security-alert@sun.com
> Cc: cu-usag@columbia.edu

> Since SUNs come with a yppasswd program which is also suid'ed (and is
> bit for bit identical to passwd -- chfn, chsh, ypchfn, ypchsh are all
> links to passwd, but yppasswd is a separate copy.), it needs to be
> updated also.

This is true. I recommend doing what we at Panix have always done --
made yppasswd a hard link to passwd, just like all the other yp and ch
junk. There does not seem to be a good reason to do otherwise, unless
there were permissions considerations.

--
John Hawkinson
jhawk@panix.com

Next message: Steve Simmons: "Re: wolves and sheep on the inet"
Previous message: Gene Spafford: "Re: wolves and sheep on the inet"
In reply to: Howie Kaye: "Re: [8lgm]-Advisory-7.UNIX.passwd.11-May-1994"
Next in thread: Pat Myrto: "Re: [8lgm]-Advisory-7.UNIX.passwd.11-May-1994"