Re: Username length inconsistencies.

To: aqy6633@acf5.nyu.edu
Cc: miquels@cistron.nl, debian-devel@lists.debian.org
Subject: Re: Username length inconsistencies.
From: Dale Scheetz <dwarf@polaris.net>
Date: Mon, 1 Jun 1998 09:02:08 -0400 (EDT)
Message-id: <[🔎] Pine.LNX.3.96.980601085955.712S-100000@dwarf.polaris.net>
In-reply-to: <E0ygJJA-0000jB-00@jessica>

On Sun, 31 May 1998 aqy6633@acf5.nyu.edu wrote:

> > I know that this is a bit of a side issue, but what are the consequences
> > of giving root a different user name? I have done it in test installs and
> > "frog" was able to log in with root priviledge, but I haven't held onto
> > such a system long enough to see what might break.
> > 
> > Thoughts?
> 
> Installation script for my program (WXftp) will break :)
> It checks whether it is running by "root" user.
> dh_testroot from debhelper does exactly the same, btw.

These are exactly the problems I was worried about. 

Wouldn't it be more secure if these programs checked the numeric uid
instead? Then it wouldn't matter what superuser's name was. 

Luck,

Dwarf
--
_-_-_-_-_-   Author of "The Debian Linux User's Guide"  _-_-_-_-_-_-

aka   Dale Scheetz                   Phone:   1 (850) 656-9769
      Flexible Software              11000 McCrackin Road
      e-mail:  dwarf@polaris.net     Tallahassee, FL  32308

_-_-_-_-_-_- If you don't see what you want, just ask _-_-_-_-_-_-_-


--
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Prev by Date: Re: [Q] how to deal with 'clock vs hwclock' call
Next by Date: Looking for Purdue Developer
Previous by thread: Re: Username length inconsistencies.
Next by thread: Re: Username length inconsistencies.
Index(es):
- Date
- Thread