Pascu Dan wrote: >Pe cuvantu meu, astea is solutii complexe la probleme simple. # nu >face nimic rau in acel fisier. e o solutie testata si functionala de >multa vreme la mine in servere. /etc/passwd- poate fi restaurat fara >prea multe probleme, deci ar fi bine sa fie operata modificare si >acolo. > > >
1. referitor la ce functioneaza la tine cu "#" in /etc/passwd, cred ca ce am scris mai jos va trebui sa-ti raspunda, fara prea multea explicatii: # diff /etc/passwd~ /etc/passwd 46c46 < test:x:1002:100::/home/test: --- > #test:x:1002:100::/home/test: # id test id: test: No such user 2. cum poate fi restaurat /etc/passwd din /etc/passwd- ( banuiesc ca asta ai vrut sa zici ) ? :) cumva "cp -f /etc/passwd- /etc/passwd" ? :P >On 4/26/05, B.V. <[EMAIL PROTECTED]> wrote: > > >>Pascu Dan wrote: >>=20 >> >> >>>editeaza de mana /etc/passwd si /etc/passwd- . II pui un # in fata la >>>username si nu mai ai probleme. Userul exista dar nu mai poate fi >>>folosit. La fel poti face cu toti userii care nu ii folosesti, numai >>>cu grija sa nu razi ceva important. >>> >>> >>> >>> >>> >>=20 >>1. fisierul "/etc/passwd-" este un backup la ultima modificare avuta >>asupra fisierului "/etc/passwd", facuta cu comenzile sistem "useradd", >>"passwd", "usermod", "userdel", etc... ! deci nu are nici un sens sa >>umbli in el ! >>=20 >>2. nu se pun semne "speciale" ca "#" in fisierul /etc/passwd ! se poate >>bloca un user cu comanda: "passwd -l <user>" sau "usermod -L <user>", in >>caz ca vrei mai tarziu sa-l deblochezi ! >>=20 >>se mai poate editand fisierul de "/etc/passwd" si alterezi campul de >>parola ( al doilea separat cu ":", care de obicei este un "x" ce-ti >>spune ca parola se afla de fapt in "/etc/shadow" unde la fel o poti >>altera )... >>=20 >>3. este mai sigur sa alterezi parola si sa schimbi shell-ul in >>"/bin/false" pt. fiecare user nefolosit deoarece s-ar putea sa mai fie >>folosit pe undeva UID-ul user-ului respectiv ! ( sunt useri care nu au >>nici un shell specificat, in acest caz este folosit shell-ul default, >>deci sa nu uiti de ei :) ) >>=20 >> >> >>>On 4/25/05, Paul Lacatus <[EMAIL PROTECTED]> wrote: >>> >>> >>> >>> >>>>=3D20 >>>>=3D20 >>>>gmail wrote: >>>>=3D20 >>>> >>>> >>>> >>>> >>>>>uite ce zice Webminu: >>>>>Recorded logins for gdm >>>>>Login From TTY Login At Logout At On For >>>>>216.68.79.221 ftpd22016 Fri Apr 15 23:52 23:52 00:00 >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> >>>>Si cum vezi tu ca cineva a luat root prin gdm din inregistrarea de mai = >>>> >>>> >su=3D > > >>>> >>>> >>>s ? >>> >>> >>> >>> >>=20 >>-- >>The Roman Rule >> The one who says it cannot be done should never interrupt the >> one who is doing it. >>=20 >>--- >>Detalii despre listele noastre de mail: http://www.lug.ro/ >>=20 >>=20 >> >> > > >--=20 >Think free, think OpenSource > >--- >Detalii despre listele noastre de mail: http://www.lug.ro/ > > > > -- ----------------------------------------------------------------- Bogdan Velcea Network & Database Engineer Romania Data Systems Tel +40-21-3010888 Fax +40-21-3010889 Email : [EMAIL PROTECTED] http://www.rdsnet.ro/ ----------------------------------------------------------------- Privileged/Confidential Information may be contained in this message. If you are not the addressee indicated in this message (or responsible for delivery of the message to such person), you may not copy or deliver this message to anyone. In such a case, you should destroy this message and kindly notify the sender by reply e-mail. ----------------------------------------------------------------- --- Detalii despre listele noastre de mail: http://www.lug.ro/
