home *** CD-ROM | disk | FTP | other *** search
- Newsgroups: comp.unix.admin
- Path: sparky!uunet!usc!sol.ctr.columbia.edu!destroyer!fmsrl7!ef2007!mjo
- From: mjo@ef2007.efhd.ford.com (Mike O'Connor)
- Subject: Re: Prevent user from editing /etc/passwd
- Message-ID: <BtAE8H.EFD@ef2007.efhd.ford.com>
- X-Disclaimer: Not an official spokesperson for Ford OPEO
- Reply-To: Mike O'Connor <mjo@fmsrl7.srl.ford.com>
- Organization: International Affairs, Overseas Engineering, "Fordz"
- References: <1992Aug17.131329.22491@cpp.ob.open.de>
- Date: Thu, 20 Aug 1992 14:43:28 GMT
- Lines: 33
-
- In article <1992Aug17.131329.22491@cpp.ob.open.de>
- schweik@cpp.ob.open.de (Martin Schweikert) writes:
-
- :I have a user on my SVR3 machine who knows - and must know :-( - the
- :root password.
-
- Why must he know the root password?
-
- :I tried to find a method to prevent him from editing /etc/passwd. It's
- :quite difficult.
-
- This is a social administrative issue, not a technical issue. If he's
- not supposed to be editing /etc/passwd and he is, talk to him -- get
- his side of the story. If that fails, talk to his boss.
-
- :Because I know he uses vi, I tried to replace /usr/bin/vi by a shell
- :script that tests if one of its parameters is *passwd. If so,
-
- Do you have "vipw" on your system? Editing the system passwd without
- locking seems bad, here.
-
- :I would like to keep things as simple as possible ...
-
- Kludging system tools for a particular user is NOT elegant, simple,
- fun, or even fattening.
-
- ...Mike
-
- --
- Michael J. O'Connor | Internet: mjo@fmsrl7.srl.ford.com
- Ford Motor Company, OPEO | UUCP: ...!{backbone}!fmsrl7!mjo
- 20000 Rotunda, Bldg. 1-3001 | Phone: +1 (313) 248-1260
- Dearborn, MI 48121 | Fax: +1 (313) 323-6277
-
