From dd3c1b5f96ce015028c6fef05c18b7afab991229 Mon Sep 17 00:00:00 2001
From: dillon <dillon@FreeBSD.org>
Date: Tue, 1 Dec 1998 21:19:49 +0000
Subject:     Added group bind(53), added sandbox users tty(4), kmem(5), and
 bind(53),     adjustd inetd.conf to run comsat and ntalk from tty sandbox,
 and     the (commented out) ident from the kmem sandbox.

    Note that it is necessary to give each group access it's own uid to
    prevent programs running under a single uid from being able to gdb
    or otherwise mess with other programs (with different group perms) running
    under the same uid.
---
 etc/master.passwd | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'etc/master.passwd')

diff --git a/etc/master.passwd b/etc/master.passwd
index fed210d..82d8359 100644
--- a/etc/master.passwd
+++ b/etc/master.passwd
@@ -3,9 +3,12 @@ toor:*:0:0::0:0:Bourne-again Superuser:/root:
 daemon:*:1:1::0:0:Owner of many system processes:/root:/sbin/nologin
 operator:*:2:5::0:0:System &:/usr/guest/operator:/bin/csh
 bin:*:3:7::0:0:Binaries Commands and Source,,,:/:/sbin/nologin
+tty:*:4:65533::0:0:Tty Sandbox:/:/sbin/nologin
+kmem:*:5:65533::0:0:KMem Sandbox:/:/sbin/nologin
 games:*:7:13::0:0:Games pseudo-user:/usr/games:/sbin/nologin
 news:*:8:8::0:0:News Subsystem:/:/sbin/nologin
 man:*:9:9::0:0:Mister Man Pages:/usr/share/man:/sbin/nologin
+bind:*:53:53::0:0:Bind Sandbox:/:/sbin/nologin
 uucp:*:66:66::0:0:UUCP pseudo-user:/var/spool/uucppublic:/usr/libexec/uucp/uucico
 xten:*:67:67::0:0:X-10 daemon:/usr/local/xten:/sbin/nologin
 pop:*:68:6::0:0:Post Office Owner:/nonexistent:/sbin/nologin
-- 
cgit v1.1