From: rickert@mp.cs.niu.edu (Neil Rickert)
Newsgroups: alt.security
Subject: Re: DIY Shadow Passwords (was Re: Crack Modifications I'd Like to See:  Comments on two breakins.)
Message-ID: <1992Feb7.125426.7909@mp.cs.niu.edu>
Date: 7 Feb 92 12:54:26 GMT
References: <1992Feb6.173904.14741@aber.ac.uk> <1992Feb7.053507.16527@cs.ucla.edu> <1992Feb7.064619.6116@iWarp.intel.com>
Organization: Northern Illinois University

In article <1992Feb7.064619.6116@iWarp.intel.com> merlyn@iWarp.intel.com (Randal L. Schwartz) writes:

>This is silly.  Get Emacs or another suitable binary editor.  Edit
>your /bin/login and /bin/passwd and /bin/chfn binaries, replacing
>/etc/passwd with /etc/p/sswd.  Create the directory /etc/p, chmod 700,
>mv /etc/passwd /etc/p/sswd.  Now write a cronjob that scruffs
>/etc/p/sswd putting the sanitized data into /etc/passwd.  No
>recompilation necessary.

 Don't forget ftpd and rexecd .  On a system which uses
dbm files you should also start building the dbm files in the new
directory.


-- 
=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=
  Neil W. Rickert, Computer Science               <rickert@cs.niu.edu>
  Northern Illinois Univ.
  DeKalb, IL 60115                                   +1-815-753-6940