I didn't mention it, but this problem was with Digital Unix 4.0D.
I've reported it to the support folks, and it has been escalated to
the security team. I have no idea when you'll see this fixed, if ever.
My original quesiton is below:
On Tue, Nov 10, 1998 at 10:53:13AM -0500, John Speno wrote:
> /usr/bin/chfn (and chsh, and maybe passwd) change the owner and group
> of /etc/passwd to bin:bin.
>
> /usr/bin/passwd didn't change the permissions, but since I performed
> this testing under ENHANCED security, passwd doesn't make any changes
> to /etc/passwd.
>
> I don't think that chfn should change the permissions. Does anyone
> know why it should?
Received on Thu Nov 12 1998 - 20:52:57 NZDT