[6618] in Athena Bugs
login temporary accounts
daemon@ATHENA.MIT.EDU (daemon@ATHENA.MIT.EDU)
Tue Dec 18 16:17:18 1990
To: bugs@ATHENA.MIT.EDU, bug-dialup@ATHENA.MIT.EDU
Date: Tue, 18 Dec 90 16:17:02 EST
From: John Carr <jfc@ATHENA.MIT.EDU>
If a user with a partially created account (kerberos principal but no
hesiod) logs in, he is given a temporary account with uid 200. This
is an allocated userid and should not be assigned even to a temporary
account.
A user in this state logged into a dialup server today. The cleanup
program broke things badly. The first time it was run, the name in
/etc/passwd was changed to anduryl (the real owner of uid 200); the
next time it ran the user was logged out because the usernames in
/etc/passwd and /etc/utmp didn't match.
