Path: utzoo!utgpu!jarvis.csri.toronto.edu!mailrus!tut.cis.ohio-state.edu!brutus.cs.uiuc.edu!apple!zorba!dtynan
From: davidsen@crdos1.crd.ge.com (Wm E Davidsen Jr)
Newsgroups: comp.unix
Subject: Re: Passwd file
Summary: Bug!
Message-ID: <3461@zorba.Tynan.COM>
Date: 10 Sep 89 01:22:36 GMT
References: <3474@altos86.Altos.COM>
Sender: dtynan@zorba.Tynan.COM
Reply-To: uunet!crdgw1.ge.com!crdos1!davidsen (bill davidsen)
Organization: GE Corp R&D Center
Lines: 13
Approved: dtynan@zorba.Tynan.COM


In article <3474@altos86.Altos.COM>, bobk@fred.UUCP (Bob Kinne) writes:
|  What is the purpose of the following /etc/passwd entry?
|  
|  ::0:0:::    (null login, password, and shell)

  This allows anyone to log in as root by giving a blank usename and no
password. It's a bug, and you should get rid of it as a security hole.
-- 
bill davidsen	(davidsen@crdos1.crd.GE.COM -or- uunet!crdgw1!crdos1!davidsen)
"The world is filled with fools. They blindly follow their so-called
'reason' in the face of the church and common sense. Any fool can see
that the world is flat!" - anon