Thanks again Ted,
This is an ugly hack (and one that I'll have to keep performing with
these types of installs), but if it's the only way to get /etc/security
to stop complaining, then I guess that's what I'll have to do.
Thanks,
Andrew Klettke
Optic Fusion NOC
253-830-2943
Subscribe to Optic Fusion's Twitter service for up to the minute network
issues and maintenance notifications. http://www.twitter.com/opticfusion
On 04/19/2010 03:04 PM, Ted Unangst wrote:
On Mon, Apr 19, 2010 at 5:42 PM, Andrew Klettke
<aklet...@opticfusion.net> wrote:
You mean the "*" field? I've replaced that with "radius", as you suggested,
so it looks like so:
(removed):radius:1000:10:radius:0:0:nocstaff:/home/(removed):/bin/ksh
It works, the user can log in fine still; however, OpenBSD still isn't happy
about it:
Checking the /etc/master.passwd file:
Login (removed) is off but still has a valid shell and alternate access
files in
home directory are still readable.
Guess my awk isn't as awesome as it used to be. I'd just edit
/etc/security. There's a check in there to make sure the password
isn't skey. Add another check that's it's not radius.
