Please set your line wrap to < 79 characters so we don't have to re-format
when quoting. Thanks.
In a message dated: Thu, 22 Jun 2000 16:34:08 EDT
Warren Mansur said:
>At least in Linux, if you are root, and you don't know the other user's
>password, then you can go to /etc/shadow (/etc/passwd on other unix systems).
>Once there, you completely remove the encrypted password. Then, you can log
>in regularly as that user, specifying no password (since it was just removed
>from /etc/passwd).
Well, if you're using NIS, there's likely no entry in the local /etc/passwd
file. Sure, you could enter one, but that only let's you get in as that user
on that machine. To change the NIS password, you'd still need to know the
user's password in NIS.
>So, passwd doesn't protect the password from being changed if you are root,
>even though it asks for the previous password. It probably is the same in
>Tru64 and yppasswd unless it does things totally differently than other UNIX
>environments.
Well, we never said that passwd was the problem, the issue is yppasswd, which
is a whole different animal. Granted, on most systems it's not that much of
problem, and evidently at least Tru64 does it right.
--
Seeya,
Paul
----
"I always explain our company via interpretive dance.
I meet lots of interesting people that way."
Niall Kavanagh, 10 April, 2000
If you're not having fun, you're not doing it right!
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
