Path: utzoo!mnetor!tmsoft!torsqnt!lethe!yunexus!ists!helios.physics.utoronto.ca!news-server.csri.toronto.edu!bonnie.concordia.ca!uunet!spool.mu.edu!samsung!umich!pmsmam!wwm
From: wwm@pmsmam.uucp (Bill Meahan)
Newsgroups: comp.unix.admin
Subject: Re: Who's in charge here: Oracle or Unix?
Keywords: Oracle, system, files
Message-ID: <1991Feb8.131905.11960@pmsmam.uucp>
Date: 8 Feb 91 13:19:05 GMT
References: <635@uswnvg.UUCP> <237@raysnec.UUCP>
Reply-To: wwm@pmsmam.UUCP (Bill Meahan)
Organization: Ford Motor Co. EFHD Ypsilanti Operations
Lines: 38

In article <237@raysnec.UUCP> shwake@raysnec.UUCP (Ray Shwake) writes:
>gbarnet@uswnvg.UUCP (Gary Barnette) writes:
>>Request for open discussion:
>
>>There has been a battle going on around here on administrating
>>some of the system flat files associated with Unix. The file of concern
>>are /etc/passwd, /etc/group, /etc/hosts, and some configuration files 
>>used by a menuing system. 
>
>	Well, I cast my vote strongly with the SA staff - and not just
>because I've spent much of my UN!X career as an administrator. For years
>I've blasted programs that usurp system priviledge without cause, and
>even cast a few words about programmers who are too lazy to work out a
>proper permission strategy. (Some guidelines for programmers in this
>regard can be found in _Unix_System_Security_ by Wood and Kochan.)
>
>-----------  
>uunet!media!ka3ovk!raysnec!shwake				shwake@rsxtech

I agree wholeheartedly.

Have the Oracle-heads considered how they are going to handle passwords?
What happens if a user changes his/her password using 'passwd' (whether
or not they are "supposed" to).?  Will the new password be incorporated
into ORACLE?  Or will a change in ORACLE exported shortly after the user
has made a change overwrite the change when overwriting the file?  What
if password aging is in effect and forces the user to change passwords
using 'passwd'?

Passwords control is >>far from the only<< issue but is sufficiently
illustrative to show the dangers of the "ORACLE IS TRUTH" approach.


Bet IBM doesn't keep VM passwords in DB2 (or do they?)!
-- 
Bill Meahan			|Product Design & Testing Section
Production Test Engineer	|Starter Motor Engineering
wwm@pmsmam			| +1 313 484 9320