4.0 Enhanced Security & root/field accts
Gary J. Rosenblum
rosenblg at cmcl2.NYU.EDU
Wed Sep 12 15:17:56 AEST 1990
Background - Ultrix 4.0 installed, ENHANCED security enabled.
(Using the auth database).
The way it is distributed, the root and field accounts both have
uid 0, gid 1. Problem is, when you set the password for root,
field gets set the same, and vice-versa. This is due to the uid
being the key into the database. This is not "fatal", but it might
introduce problems to the non-wary ranging from passwords seemingly
changing, to a security hole.
BTW:
Would getauthuid return, on subsequent calls, the other entries if they
existed (I don't have source yet).
More information about the Comp.unix.ultrix
mailing list