root password in a .py script

Kirk Strauser kirk at strauser.com
Fri Mar 12 20:35:06 CET 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

At 2004-03-12T19:11:53Z, Bart Nessux <bart_nessux at hotmail.com> writes:

> Why am I doing this? Because users turn off ssh and change the root
> password. Mac OSX allows "administrative" users to do this. This script
> undoes their changes.

1) Why do you ever use the root password under OS X?  There's really nothing
   that you can't do using 'sudo'.  I literally *never* log in as root on an
   OS X machine.

2) Out of curiosity, why are your users disabling ssh?  If they're smart enough
   to do that, aren't they smart enough to disable your script?

3) Why would you store the unencrypted root password?  The 'chpass -a'
   command lets (actually, requires) you to specify an encrypted password.
   Store that in your script if you must.

4) Get a 2x4, paint it black and write the word "LART" on it in blood red,
   and tell your users to quick changing stuff or you'll have to schedule
   them for "an adjustment".  Follow through once or twice if necessary.
- -- 
Kirk Strauser
The Strauser Group
Open. Solutions. Simple.
http://www.strausergroup.com/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAUhCD5sRg+Y0CpvERAqhCAJ9fBYCjzxfHWuaLuFgM9RprGn8DYQCbBo3h
BuavPglSNdK1E+9HHmbA0TY=
=7Ic8
-----END PGP SIGNATURE-----



More information about the Python-list mailing list