SOLVED: Unix user pcpatch, its password - security question
Verfasst: 24 Sep 2014, 10:04
Hello,
From manual:
By defaut it is possible to login locally or by ssh within "pcpatch" user.
As I understand from the manual (and experiments prove it) pcpatch Unix user is not used. What about removing Unix password for this user by default (and do not set with setPcpatchPassword) and leave only Samba password so it can't login by SSH or locally?
Also this user should have read-only access to Samba shares. I know it is mentioned in the manual but I think this should be default behaviour.
Best regards,
Stanislav German-Evtushenko
From manual:
Code: Alles auswählen
# Set the password of user pcpatch for Unix, samba and opsi.
opsi-admin -d task setPcpatchPassword
As I understand from the manual (and experiments prove it) pcpatch Unix user is not used. What about removing Unix password for this user by default (and do not set with setPcpatchPassword) and leave only Samba password so it can't login by SSH or locally?
Also this user should have read-only access to Samba shares. I know it is mentioned in the manual but I think this should be default behaviour.
Best regards,
Stanislav German-Evtushenko