On Oct 08, 09 13:03:43 +0200, Joerg Schilling wrote:
Anders Johansson
wrote: BTW: does the group(1) command on Suse still allow to become a group if the file /etc/group has an empty passwd field for the related group? This would be a security risk as the traditinal UNIX behavior is to disallow group(1) for groups with wmpty passwd fields.
SUSE does not have group(1) command. We have groups(1) and newgrp(1) and group(5). If you are questioning the behaviour of newgrp, yes, I believe an empty password should mean entering the group without password is permitted. I don't have any traditional references at hand. Solaris 5.9 man page appears to agrees with our man page, they say: solaris$ man 1 newgrp A password is demanded if the group has a password and the user is not listed in /etc/group as being a member of that group. linux$ man 1 newgrp A password is requested if the group has a password and the user is not listed in the group file as being a member of that group. What is the rationale for disregarding the empty password? thanks, JW- -- o \ Juergen Weigert paint it green! __/ _=======.=======_ <V> | jw@suse.de back to ascii! __/ _---|____________\/ \ | 0911 74053-508 __/ (____/ /\ (/) | _____________________________/ _/ \_ vim:set sw=2 wm=8 SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg) -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org