On Fri, 10 Mar 2000, Paul Richards wrote:
> Non-root users can use the pw command to get information from the
> master.passwd file e.g.
>
> ps showuser paul
> paul:*:1000:1000::0:0:& Richards:/home/paul:/usr/local/bin/bash
% pw showuser kkenn
kkenn:*:1000:0::0:0:Kris Kennaway:/home/kkenn:/usr/local/bin/tcsh
% grep kkenn /etc/passwd
kkenn:*:1000:0::0:0:Kris Kennaway:/home/kkenn:/usr/local/bin/tcsh
% ls -l /usr/bin/pw
-r-xr-xr-x 1 root wheel 53180 Mar 4 00:49 /usr/sbin/pw*
In other words, pw(8) runs with no special privileges and can only read
what the user can normally read.
----
In God we Trust -- all others must submit an X.509 certificate.
-- Charles Forsythe <[EMAIL PROTECTED]>
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
