Brian Cameron <Brian.Cameron at sun.com> wrote:
> >>> nobody:x:60001:60001:NFS Anonymous Access User:/:
> >>> noaccess:x:60002:60002:No Access User:/:
> >>> nobody4:x:65534:65534:SunOS 4.x NFS Anonymous Access User:/:
> >>
> >> Since these users do not have valid shells specified, these would not
> >> be shown.
> >
> > A blank entry in the shell field indicates the system default shell should
> > be used - on Solaris& OpenSolaris, that's "/bin/sh", which is a valid
> > shell. If you're skipping those because they're blank do you also skip
> > non-system accounts using that shorthand?
>
> Correct. The way the code works is that it calls fgetpwent() and if
> /etc/passwd contains no value, then that account does not show up in the
> Face Browser. So, users would need to avoid using the shorthand if they
> want the user to show up in the GDM Face Browser.
Giving any kind of information about known user names is considered a security
risk since aprox. 35 years on UNIX.
Is this "show ID featur" an optional feature, or is it enabled by default?
J?rg
--
EMail:joerg at schily.isdn.cs.tu-berlin.de (home) J?rg Schilling D-13353 Berlin
js at cs.tu-berlin.de (uni)
joerg.schilling at fokus.fraunhofer.de (work) Blog:
http://schily.blogspot.com/
URL: http://cdrecord.berlios.de/private/ ftp://ftp.berlios.de/pub/schily
