pam_group vs. multiple group lines

Chuck Swiger cswiger at
Tue Aug 21 13:43:33 PDT 2007

On Aug 21, 2007, at 12:50 PM, Ulrich Spoerlein wrote:
> I found this while trying to migrate groups into LDAP, but you don't
> need LDAP to reproduce this, simply place the following in /etc/group
> wheel:*:0:root
> wheel:*:0:us

That's a misconfiguration.  From "man 5 group":

   The group field is the group name used for granting file access to  
   who are members of the group.  The gid field is the number associated
   with the group name.  They should both be unique across the system  
   often across a group of systems) since they control file access.


More information about the freebsd-stable mailing list