Re: [d-security] Re: /bin/passwd as shell

To: Ralf Dreibrodt <ralf@dreibrodt.de>
Cc: debian-security@lists.debian.org
Subject: Re: [d-security] Re: /bin/passwd as shell
From: Christian Hammers <ch@westend.com>
Date: Thu, 24 Jan 2002 19:16:51 +0100
Message-id: <[🔎] 20020124181651.GC618@westend.com>
Mail-followup-to: Christian Hammers <ch@westend.com>, Ralf Dreibrodt <ralf@dreibrodt.de>, debian-security@lists.debian.org
In-reply-to: <[🔎] 3C504D02.72AFAF1F@dreibrodt.de>
References: <[🔎] 20020123233814.A7815@linux.wku.edu> <[🔎] 34422.193.159.108.235.1011853415.squirrel@madduck.net> <[🔎] 20020124111759.A10021@linux.wku.edu> <[🔎] 20020124095347.B14257@prime.konkers.net> <[🔎] 3C504D02.72AFAF1F@dreibrodt.de>

On Thu, Jan 24, 2002 at 07:05:54PM +0100, Ralf Dreibrodt wrote:
> and then no user, who has a valid shell has to enter the old password
> from user x, when he wants to change the password of user x.
> perhaps even if x=root ;-)
You have to enter it once for the ssh daemon anyways. He just wanted to
not have to enter it again for the passwd programm. 
(of course he surely wanted to make sure somehow that "normal" 
users still have to enter their passwords prior to be able to change
them...)
 
> Ralf
bye,

-christian-

Reply to:

References:
- /bin/passwd as shell
  - From: Rob VanFleet <rvf@linux.wku.edu>
- Re: /bin/passwd as shell
  - From: "martin f krafft" <madduck@madduck.net>
- Re: /bin/passwd as shell
  - From: Rob VanFleet <rvf@linux.wku.edu>
- Re: /bin/passwd as shell
  - From: David N Moore <dnmoore@konkers.net>
- Re: /bin/passwd as shell
  - From: Ralf Dreibrodt <ralf@dreibrodt.de>

Prev by Date: Re: /bin/passwd as shell
Next by Date: Re: protection against buffer overflows
Previous by thread: Re: /bin/passwd as shell
Next by thread: Re: /bin/passwd as shell
Index(es):
- Date
- Thread