[1251] in SIPB-AFS-requests
created rmt account on rosebud
daemon@ATHENA.MIT.EDU (Tom Yu)
Thu Feb 17 19:58:56 1994
Date: Thu, 17 Feb 1994 19:58:36 -0500
To: sipb-afsreq@MIT.EDU, rtfm-maintainers@MIT.EDU, charon-maintainers@MIT.EDU
From: Tom Yu <tlyu@MIT.EDU>
Basically, the backup system for charon and rtfm needs to be able to
rsh to an account on the machine with the tape drive. In order to do
this without creating a gaping security hole, I did the following:
# created homedir for user rmt...
rosebud# mkuser id=5 pgrp=mit su=no tpath=always shell=/bin/tsh home=/usr/rmt rmt
rosebud# tcbck -a /bin/dd mode=TCB,555
rosebud# tcbck -t /bin/dd
3001-027 The file /bin/dd has the wrong TCB attribute value.
3001-075 Change the file modes for /bin/dd? (yes, no) yes
rosebud# tcbck -t /bin/dd
rosebud# tcbck -a /bin/tar mode=TCB,555
rosebud# tcbck -t /bin/tar
3001-027 The file /bin/tar has the wrong TCB attribute value.
3001-075 Change the file modes for /bin/tar? (yes, no) yes
rosebud# cat /usr/rmt/.klogin
rcmd.charon@ATHENA.MIT.EDU
rcmd.bloom-picayune@ATHENA.MIT.EDU
Also, earlier, I changed the blocksize for rmt0 to 0, allowing it to
read and write variable length blocks.
If there's anything I missed, please let me know.
---Tom
