Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!linus!philabs!seismo!hao!hplabs!sri-unix!JPAYNE@BBNG.ARPA
From: JPAYNE@BBNG.ARPA
Newsgroups: net.unix-wizards
Subject: Security Problem?
Message-ID: <2784@sri-arpa.UUCP>
Date: Tue, 5-Jul-83 12:00:00 EDT
Article-I.D.: sri-arpa.2784
Posted: Tue Jul  5 12:00:00 1983
Date-Received: Sat, 9-Jul-83 20:16:13 EDT
Lines: 17


	From:  Greg Skinner 

	Some  users  stupidly  have  login and password names the same.
	This happens often when accounts are newly created and the user
	is not present at the creation time.


At LSRHS we have an account called new which runs the program newu.
Newu asks for login name, a password which has to pass the same tests
as the change passwd program, Real name, birthday, Hall, Year of
Graduation, and of course a password for the account.  It then adds a
new entry into the passwd file, and in another file, the inquir file.
The new account can't be used until it is validated with the validate
program.  This is a nice easy way to create accounts with SECURE passwds.

	Jonathan