netbsd-help: Re: Problems changing NIS password as root

Subject: Re: Problems changing NIS password as root
To: None <netbsd-help@netbsd.org>
From: Christos Zoulas <christos@zoulas.com>
List: netbsd-help
Date: 12/11/2002 16:18:11

In article <Pine.NEB.4.44.0212110852270.6990-100000@red>,
Eric Fox <eric@fox.phoenix.az.us> wrote:
>Oops!  I see I misread your problem -- you're attempting to change a
>normal users's password from the root account.
>
>If you're NIS password table is also the local table on the NIS master,
>you should be able to do the same thing for the 'martti' account while
>logged into the NIS master:
>
>  # passwd -l martti
>
>This should bypass NIS for this instance.  But you're right, NIS should
>allow root to change a normal users's password without prompting for the
>old one.

Uh, no. This is by design. A user gaining root on his own workstation
should not be able to lock-out other users on the domain. (And yes,
talking about security in an NIS/NFS environment is laughable).

christos