Path: utzoo!attcan!uunet!comix!jeffl From: jeffl@comix.UUCP (Jeff Liebermann) Newsgroups: comp.unix.sysv386 Subject: Re: No Passwd for nuucp Summary: passwd -d only works once Message-ID: <89@comix.UUCP> Date: 28 Oct 90 23:01:25 GMT References: <1990Oct22.211639.14436@mccc.uucp> <1990Oct25.162158.4398@druid.uucp> <1990Oct27.081021.12021@pegasus.com> Organization: COmmittee to Maintain Independent Xenix Lines: 31 In article <1990Oct27.081021.12021@pegasus.com>, richard@pegasus.com (Richard Foulk) writes: > >I think you need to disable the requirement for all logins. Not that you > >won't have password protection but any user will now be able to have a > >null password if they want. If this isn't a problem on your system then > >look at /etc/default/login. Add (or change) a line that says "PASSREQ=NO" > >and you should have what you want. > > Not true. If a user is given a password, passwd(1) will not allow him > to replace it with a null password. Agreed. Details as follows. In SCO 3.2.2 with C2 security (allegedly) turned off (relaxed) /etc/default/login includes PASSREQ=NO the passwd -d command correctly deletes the requirement for having a password. However, as soon as the user (or nuucp) logs in immediatly thereafter, login complains that they don't have a password and demands one. So much for that idea. At best, I was able to get the password set to a . For entertainment, I then started hacking at /tcb/files/auth/n/nuucp and /etc/passwd files directly. Same result. I can delete a password for a single attempt, but a password is demanded immediately thereafter. -- # Jeff Liebermann Box 272 1540 Jackson Ave Ben Lomond CA 95005 # (408)336-2558 voice (408)429-0483 digital pager WB6SSY CIS:73557,2074 # PC REPAIR & RF DESIGN uunet!comix!jeffl ucscc.ucsc.edu!comix!jeffl # universe!milky_way!solar_system!earth!na!us!uunet!comix!jeffl