On Tue, May 13, 2008 at 11:05:36PM -0500, Nicolas Williams wrote:
> On Tue, May 13, 2008 at 02:56:43PM -1000, Joseph Kowalski wrote:
> > Bart Smaalders wrote:
> > >How will we insure that there are real administrative users present
> > >in the password file?
> > Are you asserting that installation must create a administrative user
> > (as with Ubuntu, Debian, others) or something else? If its "something
> > else",
> > could you elaborate?
> >
> > If an administrative user deletes all administrative users from the passwd
> > file,... well those are the breaks. He got exactly what he wanted. :-)
>
> IIRC sulogin simply execs a root shell if /etc/passwd and /etc/shadow
> are missing/damaged. Presumably this would still be true (or false, if
> it is false).
I'd suggest it would be a lot harder to interpret "there are no
administrative users" as "this password file is broken, so come on in".
Ceri
--
That must be wonderful! I don't understand it at all.
-- Moliere
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
URL:
<http://mail.opensolaris.org/pipermail/opensolaris-arc/attachments/20080514/03c84d0d/attachment.bin>
