Hello! Bob Doolittle schrieb: > ... > utuser -L doesn't report the logical token, only the raw. > > That's irrelevant anyway. This looks like > somebody with root access was experimenting with > "utxconfig -t token -r 1024x768". When doing so, > a token is created as specified to hold the value, > but it's not bound to any raw token, and there's > no record as to who ran the command. All you know > is that it was somebody with root access, and it > doesn't correspond to a physical card. > > You could try experimenting by typing "utuser -p > user.abcdefghij-klmn", in case somebody was trying > to do something even more convoluted, but my bet > is you won't find anything and if you do it won't > be useful in determining who did this. > > I seem to recall a security bug a while back > which could allow such behavior for non-root > users under certain circumstances. Are you > up to date on patches? > ...
Thanks to all of you. utuser -p was the right thing to do. It told me, that these entries correspond to some known users, who also can be authorized via MicroPayflex cards. I think that is because one user can have multiple TokenCards. From this point of view it is a good idea to give them a user based name instead of a token based name. With regards, Peter Ohlerich. -- ---------------------------------------------------------------------- HRZ der Universitaet Bielefeld Phone: +49 521 106-00 Dipl.-Inf. Peter Ohlerich Email: [EMAIL PROTECTED] P.O.Box 100131 WWW: http://www.uni-bielefeld.de/hrz/ D-33501 Bielefeld (Germany) _______________________________________________ SunRay-Users mailing list [email protected] http://www.filibeto.org/mailman/listinfo/sunray-users
