Re: Computer Security (SGI)

David Wilbur (dwilbu01@emerald.tufts.edu)
Thu, 16 Sep 1999 10:53:02 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Robert D Scott: "Re: Hybrid vigor Summary"
Previous message: alan: "ROESY"
Maybe in reply to: Karen Ann Smith: "Computer Security (SGI)"

Inspired by recent postings on computer security on SGI systems, I
implemented the suggestions of previous posts. Additionally at the
recommendation of our university IT folks, and with their help, I
implemented shadow passwords, where the encryped passwords in
/etc/passwd are moved to another file, readable only by root, rather
than in /etc/passwd, readable by the world. (more info
http://koudelka.ase.tufts.edu/sec.stand.shtml).

Unfortunately, the nmrsu password, when entered from inside XWINNMR is
not recognized. My solution, somewhat inelegant, was to move the
encrypted password for nmrsu only, back to /etc/passwd. Since this
bypasses any protection afforded by shadow passwords, the password must
be a good one, ie mixed letters and numbers, not in any dictionary. If
anyone knows a better solution that will allow XWINNMR to recognize the
nmrsu password, please post it.

Dave

__________________________________
David J. Wilbur, Ph.D.
Instrumentation Specialist
Department of Chemistry
Tufts University
voice: 617-627-2163
Fax: 617-627-3443
email: dwilbu01@emerald.tufts.edu
__________________________________

Next message: Robert D Scott: "Re: Hybrid vigor Summary"
Previous message: alan: "ROESY"
Maybe in reply to: Karen Ann Smith: "Computer Security (SGI)"