Path: utzoo!attcan!utgpu!watmath!att!tut.cis.ohio-state.edu!cs.utexas.edu!uunet!crdgw1!crdgw1.ge.com!barnett
From: barnett@crdgw1.crd.ge.com (Bruce Barnett)
Newsgroups: comp.unix.wizards
Subject: Re: Shutting off accounts (was: "Re: Multiple Root ID's ...")
Keywords: accounts, /dev/null, shutoff, `Woof!'
Message-ID: <2458@crdgw1.crd.ge.com>
Date: 21 Sep 89 16:23:54 GMT
References: <435@lxn.eds.com> <347@galadriel.bt.co.uk> <4183@buengc.BU.EDU> <7383@rpi.edu> <2449@crdgw1.crd.ge.com> <19711@mimsy.UUCP>
Sender: news@crdgw1.crd.ge.com
Reply-To: barnett@crdgw1.crd.ge.com (Bruce Barnett)
Organization: GE Corp. R & D, Schenectady, NY
Lines: 15
In-reply-to: kilroy@mimsy.UUCP (kilroy hasn't been here in *weeks*)

In article <19711@mimsy.UUCP>, kilroy@mimsy (kilroy hasn't been here in *weeks*) writes:

>Changing the password field to something invalid (eg, `*') is more
>straightforward

Changing the password field isn't enough. They can get in using /etc/hosts.equiv
or .rhosts.

> but if you really want to keep an account from being
>used by changing the shell I'd recommend /usr/ucb/yes . . .

Why is 'yes(1)' better than 'true(1)' ?

--
Bruce G. Barnett	<barnett@crd.ge.com>   uunet!crdgw1!barnett