Although, this is not apropos to the topic of this list,
it is related through security issues, so I'll be brief...
The real problem is access to the local root account and then
to NFS/NIS+ distributed user accounts. The only way to stop
access to the local root account is to set a password with eeprom.
This should stop an attempt to reset the local root password.
This does not address the issue of users sharing their personal
From: grace @
To: firewalls @
Subject: su - userid
Date: Monday, September 09, 1996 8:36AM
I know that this is not the right place, but thought that there must be
a lot of capable people who can answer this .
Our system administrator is not capable of distinguishing the fact of
how to stop people from using some one else 's id.
We are running NIS+.
su - root (On any client machine, of which you have the password.)
su - userid (You get logged in as the 'userid' specified).
Is there a way to stop this (Other than going to AFS. etc...).
Thanks In advance.