Path: utzoo!attcan!utgpu!news-server.csri.toronto.edu!mailrus!wuarchive!zaphod.mps.ohio-state.edu!samsung!xylogics!bu.edu!mirror!rayssd!galaxia!dave
From: dave@galaxia.Newport.RI.US (News Administrator)
Newsgroups: comp.unix.wizards
Subject: Re: Old rlogin bug
Message-ID: <990@galaxia.Newport.RI.US>
Date: 28 Jul 90 02:05:49 GMT
References: <23959@adm.BRL.MIL> <698@msor0.UUCP>
Organization: Dave's Very Own Personal System
Lines: 19

In article <698@msor0.UUCP> rt@msor0.UUCP (Raymond Thompson) writes:
>
>This happened to me soon after we installed a new SUN system and was caused
>by a typing error in the passwd file.  The line
>+::0:0:::
>forcing a look at NIS (ne YP) was typed in with the leading '+' missing.
>Hey presto, a null System Manager

This is a good example of why I never use "0" in a YP reference, I always
use "999".  That way, if anything goes wrong the worst that can happen is
that someone can gain access to the machine using the uid 999.  Since I
also make sure that I never assign 999 to a real user there is very little
damage that can be done.  About the worst thing that can happen is that
the intruders could copy the passwd file so that they could munch on it
later but if you use shadow passwords then even that is not a problem.
-- 
David H. Brierley
Home: dave@galaxia.Newport.RI.US    Work: dhb@quahog.ssd.ray.com
Be excellent to each other.