User Information (Easy Questions!)

Matthew Seaman m.seaman at infracaninophile.co.uk
Sat Aug 5 12:12:43 UTC 2006 

beno wrote:
> Hi;
> * How do I find out which users have access to the box and what their
> permissions/groups are?

Type:

    % id username

which will tell you the users' UID and what groups they are a member of.

> * How do I edit those permissions/groups?

Unless you're using NIS or LDAP or some other directory program, then
all you need to do is edit the /etc/master.passwd and /etc/group files.
You can do that directly; use the vipw(8) command to edit
the password file safely and to automatically rebuild /etc/passwd the 
various .db files from /etc/master.passwd, but beware that screwing up
the password file can lock you out of the machine.

However using the pw(8) command is recommended.

> * If I delete a user, does that affect the files/programs he installed,
> etc?

No -- file and program ownership is recorded in the filesystem using
the UID and GID numbers.  Deleting the user from the password file removes
the human readable name and the password needed to log in and the mapping
from username to UID.  The files will still exist in the system, but
when you look at the ownership of them using ls(1) you'll see a number 
instead of a name for the owner.

Note: this is potentially a problem.  If the UID number gets reused for a
different account, that new user will get all the ownership rights to the
old users' files.  It can often be a better policy to disable an old account
-- set the password field in /etc/master.passwd to '!!' and change the shell
to /sbin/nologin -- rather than to delete it.

You can also get a report on any 'unowned' files in the weekly periodic
e-mail by adding

    weekly_noid_enable="YES"

to /etc/periodic.conf

	Cheers,

	Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.                       7 Priory Courtyard
                                                      Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey         Ramsgate
                                                      Kent, CT11 9PW

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 250 bytes
Desc: OpenPGP digital signature
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20060805/91ba3fa9/signature.pgp

More information about the freebsd-questions mailing list