> Excuse me, but I was under the impression that the passwd file *has* to be
> readable to the world in order for certain programs to access information
> (e.g., finger, login, sendmail, etc.). Just wondering how you circumvent
> the laws of Unix.
>
Actually, these programs run as root so they have access to the
master.passwd file etc... We run bsdi 2.1 which may have some differences
compared to unix flavors you have experience with... We alsorun with the
fingerd turned off and with finger set for senior staff use only. We had
a problem with a user being 'mail bombed' ...600+ meg being sent to their
account. Turns out the bomber had gotten her email account, name, etc
from the finger daemon. That kind of cyber terrorism we can do without.
Rob