root password in a .py script
kirk at strauser.com
Fri Mar 12 20:35:06 CET 2004
-----BEGIN PGP SIGNED MESSAGE-----
At 2004-03-12T19:11:53Z, Bart Nessux <bart_nessux at hotmail.com> writes:
> Why am I doing this? Because users turn off ssh and change the root
> password. Mac OSX allows "administrative" users to do this. This script
> undoes their changes.
1) Why do you ever use the root password under OS X? There's really nothing
that you can't do using 'sudo'. I literally *never* log in as root on an
OS X machine.
2) Out of curiosity, why are your users disabling ssh? If they're smart enough
to do that, aren't they smart enough to disable your script?
3) Why would you store the unencrypted root password? The 'chpass -a'
command lets (actually, requires) you to specify an encrypted password.
Store that in your script if you must.
4) Get a 2x4, paint it black and write the word "LART" on it in blood red,
and tell your users to quick changing stuff or you'll have to schedule
them for "an adjustment". Follow through once or twice if necessary.
The Strauser Group
Open. Solutions. Simple.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the Python-list