[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] password change on NIS as root?

To: Bjorn Tore Sund <bjornts@xxxxxxxxx>
Subject: Re: [suse-security] password change on NIS as root?
From: Bob Vickers <bobv@xxxxxxxxxxxxx>
Date: Thu, 18 Dec 2003 17:41:51 +0000 (GMT)
Cc: suse-security@xxxxxxxx
Delivered-to: mailing list suse-security@xxxxxxxx
Delivery-date: Thu, 18 Dec 2003 18:42:34 +0100
Envelope-to: suse@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <Pine.LNX.4.58.0312181235540.3293@xxxxxxxxxxxxxxx>
List-help: <mailto:suse-security-help@suse.com>
List-post: <mailto:suse-security@suse.com>
List-subscribe: <mailto:suse-security-subscribe@suse.com>
List-unsubscribe: <mailto:suse-security-unsubscribe-suse=archive.cert.uni-stuttgart.de@suse.com>
Mailing-list: contact suse-security-help@xxxxxxxx; run by ezmlm
References: <Pine.LNX.4.58.0312181235540.3293@xxxxxxxxxxxxxxx>
Reply-to: Bob Vickers <R.Vickers@xxxxxxxxxxxxx>

This unpleasant problem happens on 8.2 as well. I'm not certain, but I
believe it started happening a few weeks after we upgraded to 8.2, so
maybe it was caused by a security upgrade. Or maybe some SuSEconfig
mischief.

Bob

On Thu, 18 Dec 2003, Bjorn Tore Sund wrote:

>
> Having just upgraded my NIS (no plus) Master from SuSE 8.0 to 9.0 I all
> of a sudden have a problem.  Normal users can change their NIS passwd
> running 'passwd', the root user cannot - I'm prompted for the user's
> password not the root password.  Even when running the command on the
> NIS master.  Yppasswd used to help, but these days only informs me that
> it's deprecated and seems to simply run passwd.
>
> Local password file and NIS password file are different on the server,
> by design.  Root is not a NIS user, again, because I like it that way.
>
> I _can_ change the password by running htpasswd and using vi(1) on the
> NIS shadow file (I just did, the problem became apparent because of a
> user who had forgotten his password), but I was looking for something
> slightly less ugly.  There must surely still be tools?
>
> Bjørn
> --
> Bjørn Tore Sund         Phone:  (+47) 555-84894      Stupidity is like a
> System administrator    Fax:    (+47) 555-89672      fractal; universal and
> Math. Department        Mobile: (+47) 918 68075      infinitely repetitive.
> University of Bergen    VIP:    81724
> teknisk@xxxxxxxxx       Email:  bjornts@xxxxxxxxx    http://www.mi.uib.no/
>
> --
> Check the headers for your unsubscription address
> For additional commands, e-mail: suse-security-help@xxxxxxxx
> Security-related bug reports go to security@xxxxxxx, not here
>

==============================================================
Bob Vickers                     R.Vickers@xxxxxxxxxxxxx
Dept of Computer Science, Royal Holloway, University of London
WWW:    http://www.cs.rhul.ac.uk/home/bobv
Phone:  +44 1784 443691

--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here

Follow-Ups:
- Re: [suse-security] password change on NIS as root?
  - From: Bjorn Tore Sund

References:
- [suse-security] password change on NIS as root?
  - From: Bjorn Tore Sund

Prev by Date: [suse-security] Re: [security@xxxxxxx] Tripwire Segmentation Fault error...
Next by Date: [suse-security] Nmap and Nessus broken with SuSE 9.0
Previous by thread: [suse-security] password change on NIS as root?
Next by thread: Re: [suse-security] password change on NIS as root?
Index(es):
- Date
- Thread