home *** CD-ROM | disk | FTP | other *** search
- Path: sparky!uunet!wupost!emory!swrinde!sdd.hp.com!saimiri.primate.wisc.edu!zaphod.mps.ohio-state.edu!pacific.mps.ohio-state.edu!linac!att!ucbvax!mhs.attmail.com!simons/G=Colin/I=CB/S=Sewell/O=H.A.Simons.Ltd/OU=CORP
- From: simons/G=Colin/I=CB/S=Sewell/O=H.A.Simons.Ltd/OU=CORP@mhs.attmail.com
- Newsgroups: comp.os.vms
- Subject: Re: HELP: how to stop and prevent break in?
- Message-ID: <9211172006.AA16358@ucbvax.Berkeley.EDU>
- Date: 17 Nov 92 17:37:56 GMT
- Sender: daemon@ucbvax.BERKELEY.EDU
- Distribution: world
- Organization: The Internet
- Lines: 37
-
- |Thanks for the explanation of the ownerships in the posts, but the
- |problem we encountered is that the first name S892999 shown below is
- |essentially a user's name.
- |
- |~~~~~~~~~~~~~~
- | $ dir login.com;3 /security
- |
- | Directory $DUA0:[STUD.S882000]
- |
- | LOGIN.COM;3 [S892999,S882000] (RWED,RWED,,)
- | ^ ^
- | Total of 1 file. | |
- | | |
- | Another user's name-- --- owner of the account
- |
- |~~~~~~~~~~~~~~~
- |
- |I'm just wondering if there is a possiblity that the name of a group
- |can be the same as the name of a user. Or is there any way to check
- |the group name in VMS? like "ypcat group" in UNIX running NIS.
-
- yes, it's possible. if you look up the identifier S892999
- in AUTHORIZE using SHOW/ID S892999 you'll find that it's
- defined as [group-no-of-S882000,177777]. You may add identifiers
- of that type that translate to ANY alpha string, including the
- name of another user. the alpha strings don't mean anything to VMS;
- they are only there to make the output more readable. VMS
- deals with the numeric values only.
-
- since AUTHORIZE won't let you create a user with a uic of
- [ooo,177777], the only thing i can think of is a user was
- added with an account field of S892999. or maybe somebody
- changed the identifier with the MODIFY/IDENT command of AUTHORIZE.
- Or maybe used COPY or RENAME in AUTHORIZE.
-
-
-
-
