After tracing the passwd command I found these files being referred by the command.
/sbin/passwd /var/run/ld-elf.so.hints /usr/lib/libkadm.so.3 /usr/lib/libkrb.so.3 /usr/lib/libcrypto.so.1 /usr/lib/libcrypt.so.2 /usr/lib/librpcsvc.so.2 /usr/lib/libcom_err.so.2 /usr/lib/libutil.so.3 /usr/lib/libc.so.4 /usr/lib/libcrypt.so.2 /etc/malloc.conf /etc/spwd.db /etc/auth.conf /dev/tty /dev/urandom /etc/master.passwd /etc/localtime /etc/passwd /var/run/log
and access to the users' home directory.
Regards SSR
From: Mark Redding <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: passwd Date: Fri, 6 Jun 2003 13:26:44 +0100 (BST)
Hi all,
I'm building a system (FreeBSD 4.7) which upon which I wish the majority of users to only have extremely limited access to (ie. to be able to telnet elsewhere).
One of the things I've done is to "chmod o-rwx" most everything in /bin/ /sbin/ /usr/bin/ /usr/sbin/ and /usr/libexec/
The only commands that users can access now are "passwd" and "telnet" as I've changed permissions to give them "r-x" access to these commands, and also to /usr/libexec/ld.elf*
The problem I have at present is that users can telnet, but they cannot issue the passwd command without getting :-
passwd: permission denied
Does anyone know what other commands passwd may be trying to execute, or of any way I can 'trace' the program to see what it's trying to do (I've KTRACE switched OFF in the kernel and have no intention of switching it on).
thanks in advance,
Mark Redding.
===== Mark W J Redding
__________________________________________________
Yahoo! Plus - For a better Internet experience
http://uk.promotions.yahoo.com/yplus/yoffer.html
_______________________________________________
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
_________________________________________________________________
Looking for love? Yearning for friendship? http://www.msn.co.in/Romance/ You're in the right place
_______________________________________________ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"