[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] Access Control Challenge

Subject: [ale] Access Control Challenge
From: danscox at mindspring.com (Danny Cox)
Date: Mon May 24 17:34:17 2004
In-reply-to: <[email protected]>
References: <[email protected]>

Thomas,

On Sun, 2004-05-23 at 01:17, Thomas Wood wrote:
> Has 
> anyone else found a more elegant solution?  I'd really like to keep my 
> DBAs in the loop, password-wise, but they don't need the password and I 
> think I can prevent them from changing it.
> 
> Any thoughts?  And no, tcp wrappers doesn't let you filter by username. 
>   Oh that it did.  Also, I'm trying to avoid installing a firewall on my 
> DB, so please, no filter rulesets.

	Will passwd -l (see man 1 passwd) do?  It "locks" the account, only
allowing root to gain access.  It may close the door too much, though.

-- 
kernel, n.: A part of an operating system that preserves the
medieval traditions of sorcery and black art.

Danny

Follow-Ups:
- [ale] Access Control Challenge
  - From: thomaswood at mac.com (Thomas Wood)

References:
- [ale] Access Control Challenge
  - From: thomaswood at mac.com (Thomas Wood)

Prev by Date: [ale] ftp.ale.org
Next by Date: [ale] ftp.ale.org
Previous by thread: [ale] Access Control Challenge
Next by thread: [ale] Access Control Challenge
Index(es):
- Date
- Thread