Path: utzoo!attcan!uunet!seismo!sundc!pitstop!sun!amdcad!ames!haven!uflorida!gatech!emcard!stiatl!meo From: meo@stiatl.UUCP (Miles O'Neal) Newsgroups: comp.bugs.sys5 Subject: Re: SVR3 passwd changes mode of passwd file Message-ID: <443@stiatl.UUCP> Date: 26 Sep 88 14:08:37 GMT References: <3394@dunkshot.mips.COM> <5060001@hpsal2.HP.COM> Organization: Sales Technologies Inc., Atlanta, GA Lines: 12 In article <5060001@hpsal2.HP.COM>, morrell@hpsal2.HP.COM (Michael Morrell) writes: > I think you're missing the point. The passwd program should change a user's > password and THAT'S ALL. It has absolutely no business changing anything > else (especially if it's not documented!). No, I did not miss the point. I was addressing one of the issues that I saw in the article; namely that of his user's responses. With as little security as unix(tm) has, it's best to be as secure as possible. The other issue, that passwd() (or whatever did it) was broke, I did not address. In fact, I agree. Its broke. ===================================================================== Miles O'Neal decvax!gatech!stiatl!meo