SUMMARY: problems with permissions on passwd.org_dir

From: BILLY (billy@student.adelaide.edu.au)
Date: Sat Dec 06 1997 - 09:59:06 CST

here's my original post:

=> we're having a lot of trouble hiding the passwd field of passwd.org_dir
=>
=> here's what "niscat -o" has to say...
=>
=> Object Name : passwd
=> Directory : org_dir.smug.asn.au.
=> Owner : skinner.smug.asn.au.
=> Group : admin.smug.asn.au.
=> Access Rights : ----rmcdrmcdr---
=> Time to Live : 12:0:0
=> Creation Time : Sat Aug 9 16:46:19 1997
=> Mod. Time : Tue Oct 14 23:43:23 1997
=> Object Type : TABLE
=> Table Type : passwd_tbl
=> Number of Columns : 8
=> Character Separator : :
=> Search Path :
=> Columns :
=> [0] Name : name
=> Attributes : (SEARCHABLE, TEXTUAL DATA, CASE SENSITIVE)
=> Access Rights : r---------------
=> [1] Name : passwd
=> Attributes : (TEXTUAL DATA)
=> Access Rights : -----m----------
=> [2] Name : uid
=> Attributes : (SEARCHABLE, TEXTUAL DATA, CASE SENSITIVE)
=> [3] Name : gid
=> Attributes : (TEXTUAL DATA)
=> Access Rights : r-----------r---
=> [4] Name : gcos
=> Attributes : (TEXTUAL DATA)
=> Access Rights : r---rm------r---
=> [5] Name : home
=> Attributes : (TEXTUAL DATA)
=> Access Rights : r-----------r---
=> [6] Name : shell
=> Attributes : (TEXTUAL DATA)
=> Access Rights : r-----------r---
=> [7] Name : shadow
=> Attributes : (TEXTUAL DATA)
=> Access Rights : ----------------
=>
=> so passwd is user-modifiable only, yet a niscat on passwd.org_dir shows all
=> the encoded passwords...

i received a number of replies, most of which said that the table permissions
are OR'ed against the column ones, so the solution is to do:

nischmod og=rwcm,nw= passwd.org_dir

thanks especially to:
Andrew Mitchell <afm@colltech.com>
Matthew Atkinson <m.atkinson@csl.gov.uk>

i also mailed a while ago regarding an as-yet unresolved problem with CDE.
Matthew Atkinson's reply included mention of a possible fix, adding the
machine name to the admin group. hopefully, this will fix that problem as
well.

Billy Constantine
Computer Science student / SMUG Systems Administrator
University of Adelaide, South Australia

This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:12:11 CDT