Annotation of 43BSDReno/usr.bin/uucp/USERFILE.0, revision 1.1
1.1 ! root 1:
! 2:
! 3:
! 4: USERFILE(5) 1990 USERFILE(5)
! 5:
! 6:
! 7:
! 8: N�NA�AM�ME�E
! 9: USERFILE - UUCP pathname permissions file
! 10:
! 11: D�DE�ES�SC�CR�RI�IP�PT�TI�IO�ON�N
! 12: The _�U_�S_�E_�R_�F_�I_�L_�E file specifies the file system directory trees
! 13: that are accessible to local users and to remote systems via
! 14: UUCP.
! 15:
! 16: Each line in _�U_�S_�E_�R_�F_�I_�L_�E is of the form:
! 17:
! 18: [_�l_�o_�g_�i_�n_�n_�a_�m_�e],�,[_�s_�y_�s_�t_�e_�m] [ c�c ] _�p_�a_�t_�h_�n_�a_�m_�e [_�p_�a_�t_�h_�n_�a_�m_�e] [_�p_�a_�t_�h_�n_�a_�m_�e]
! 19:
! 20: The first two items are separated by a comma; any number of
! 21: spaces or tabs may separate the remaining items. Lines
! 22: beginning with a `#' character are comments. A trailing `\'
! 23: indicates that the next line is a continuation of the
! 24: current line.
! 25:
! 26: _�L_�o_�g_�i_�n_�n_�a_�m_�e is a login (from /_�e_�t_�c/_�p_�a_�s_�s_�w_�d) on the local
! 27: machine.
! 28:
! 29: _�S_�y_�s_�t_�e_�m is the name of a remote machine, the same name used
! 30: in _�L._�s_�y_�s(5).
! 31:
! 32: _�c denotes the optional _�c_�a_�l_�l_�b_�a_�c_�k field. If a c�c appears here,
! 33: a remote machine that calls in will be told that callback is
! 34: requested, and the conversation will be terminated. The
! 35: local system will then immediately call the remote host
! 36: back.
! 37:
! 38: _�P_�a_�t_�h_�n_�a_�m_�e is a pathname prefix that is permissible for this
! 39: _�l_�o_�g_�i_�n and/or _�s_�y_�s_�t_�e_�m.
! 40:
! 41: When _�u_�u_�c_�i_�c_�o(8C) runs in master role or _�u_�u_�c_�p(1C) or _�u_�u_�x(1C)
! 42: are run by local users, the permitted pathnames are those on
! 43: the first line with a _�l_�o_�g_�i_�n_�n_�a_�m_�e that matches the name of the
! 44: user who executed the command. If no such line exists, then
! 45: the first line with a null (missing) _�l_�o_�g_�i_�n_�n_�a_�m_�e field is
! 46: used. (Beware: _�u_�u_�c_�i_�c_�o is often run by the superuser or the
! 47: UUCP administrator through _�c_�r_�o_�n(8).)
! 48:
! 49: When _�u_�u_�c_�i_�c_�o runs in slave role, the permitted pathnames are
! 50: those on the first line with a _�s_�y_�s_�t_�e_�m field that matches the
! 51: hostname of the remote machine. If no such line exists,
! 52: then the first line with a null (missing) _�s_�y_�s_�t_�e_�m field is
! 53: used.
! 54:
! 55: _�U_�u_�x_�q_�t(8) works differently; it knows neither a login name
! 56: nor a hostname. It accepts the pathnames on the first line
! 57: that has a null _�s_�y_�s_�t_�e_�m field. (This is the same line that
! 58: is used by _�u_�u_�c_�i_�c_�o when it cannot match the remote machine's
! 59: hostname.)
! 60:
! 61:
! 62:
! 63: Printed 7/4/90 June 1
! 64:
! 65:
! 66:
! 67:
! 68:
! 69:
! 70: USERFILE(5) 1990 USERFILE(5)
! 71:
! 72:
! 73:
! 74: A line with both _�l_�o_�g_�i_�n_�n_�a_�m_�e and _�s_�y_�s_�t_�e_�m null, for example
! 75:
! 76: ,�, /�/v�va�ar�r/�/s�sp�po�oo�ol�l/�/u�uu�uc�cp�pp�pu�ub�bl�li�ic�c
! 77:
! 78: can be used to conveniently specify the paths for both "no
! 79: match" cases if lines earlier in _�U_�S_�E_�R_�F_�I_�L_�E did not define
! 80: them. (This differs from older Berkeley and all USG ver-
! 81: sions, where each case must be individually specified. If
! 82: neither case is defined earlier, a "null" line only defines
! 83: the "unknown login" case.)
! 84:
! 85: To correctly process _�l_�o_�g_�i_�n_�n_�a_�m_�e on systems that assign
! 86: several logins per UID, the following strategy is used to
! 87: determine the current _�l_�o_�g_�i_�n_�n_�a_�m_�e:
! 88:
! 89: 1) If the process is attached to a terminal, a login entry
! 90: exists in /_�v_�a_�r/_�r_�u_�n/_�u_�t_�m_�p, and the UID for the _�u_�t_�m_�p name
! 91: matches the current real UID, then _�l_�o_�g_�i_�n_�n_�a_�m_�e is set to
! 92: the _�u_�t_�m_�p name.
! 93:
! 94: 2) If the U�US�SE�ER�R environment variable is defined and the UID
! 95: for this name matches the current real UID, then _�l_�o_�g_�i_�n_�-
! 96: _�n_�a_�m_�e is set to the name in U�US�SE�ER�R.
! 97:
! 98: 3) If both of the above fail, call _�g_�e_�t_�p_�w_�u_�i_�d(3) to fetch
! 99: the first name in /_�e_�t_�c/_�p_�a_�s_�s_�w_�d that matches the real
! 100: UID.
! 101:
! 102: 4) If all of the above fail, the utility aborts.
! 103:
! 104: F�FI�IL�LE�ES�S
! 105: /usr/lib/uucp/USERFILE
! 106: /usr/lib/uucp/UUAIDS/USERFILE USERFILE example
! 107:
! 108: S�SE�EE�E A�AL�LS�SO�O
! 109: uucp(1C), uux(1C), L.cmds(5), L.sys(5), uucico(8C),
! 110: uuxqt(8C)
! 111:
! 112: N�NO�OT�TE�ES�S
! 113: The UUCP utilities (_�u_�u_�c_�i_�c_�o, _�u_�u_�c_�p, _�u_�u_�x, and _�u_�u_�x_�q_�t) always
! 114: have access to the UUCP spool files in /_�v_�a_�r/_�s_�p_�o_�o_�l/_�u_�u_�c_�p,
! 115: regardless of pathnames in _�U_�S_�E_�R_�F_�I_�L_�E.
! 116:
! 117: If u�uu�uc�cp�p is listed in _�L._�c_�m_�d_�s(5), then a remote system will
! 118: execute _�u_�u_�c_�p on the local system with the _�U_�S_�E_�R_�F_�I_�L_�E
! 119: privileges for its _�l_�o_�g_�i_�n, not its hostname.
! 120:
! 121: _�U_�u_�c_�i_�c_�o freely switches between master and slave roles during
! 122: the course of a conversation, regardless of the role it was
! 123: started with. This affects how _�U_�S_�E_�R_�F_�I_�L_�E is interpreted.
! 124:
! 125:
! 126:
! 127:
! 128:
! 129: Printed 7/4/90 June 2
! 130:
! 131:
! 132:
! 133:
! 134:
! 135:
! 136: USERFILE(5) 1990 USERFILE(5)
! 137:
! 138:
! 139:
! 140: W�WA�AR�RN�NI�IN�NG�G
! 141: _�U_�S_�E_�R_�F_�I_�L_�E restricts access only on strings that the UUCP
! 142: utilities identify as being pathnames. If the wrong holes
! 143: are left in other UUCP control files (notably _�L._�c_�m_�d_�s), it
! 144: can be easy for an intruder to open files anywhere in the
! 145: file system. Arguments to _�u_�u_�c_�p(1C) are safe, since it
! 146: assumes all of its non-option arguments are files. _�U_�u_�x(1C)
! 147: cannot make such assumptions; hence, it is more dangerous.
! 148:
! 149: B�BU�UG�GS�S
! 150: The _�U_�U_�C_�P _�I_�m_�p_�l_�e_�m_�e_�n_�t_�a_�t_�i_�o_�n _�D_�e_�s_�c_�r_�i_�p_�t_�i_�o_�n explicitly states that
! 151: all remote login names must be listed in _�U_�S_�E_�R_�F_�I_�L_�E. This
! 152: requirement is not enforced by Berkeley UUCP, although it is
! 153: by USG UUCP.
! 154:
! 155: Early versions of 4.2BSD _�u_�u_�x_�q_�t(8) erroneously check UUCP
! 156: spool files against the _�U_�S_�E_�R_�F_�I_�L_�E pathname permissions.
! 157: Hence, on these systems it is necessary to specify
! 158: /_�v_�a_�r/_�s_�p_�o_�o_�l/_�u_�u_�c_�p as a valid path on the _�U_�S_�E_�R_�F_�I_�L_�E line used by
! 159: _�u_�u_�x_�q_�t. Otherwise, all _�u_�u_�x(1C) requests are rejected with a
! 160: "PERMISSION DENIED" message.
! 161:
! 162:
! 163:
! 164:
! 165:
! 166:
! 167:
! 168:
! 169:
! 170:
! 171:
! 172:
! 173:
! 174:
! 175:
! 176:
! 177:
! 178:
! 179:
! 180:
! 181:
! 182:
! 183:
! 184:
! 185:
! 186:
! 187:
! 188:
! 189:
! 190:
! 191:
! 192:
! 193:
! 194:
! 195: Printed 7/4/90 June 3
! 196:
! 197:
! 198:
unix.superglobalmegacorp.com
This archive runs on limited infrastructure.
Preserving old code on modern bandwidth.
Automated agents are requested to crawl responsibly.
![[BACK]](/cvsweb/icons/back.gif){kind=icon}
Return to USERFILE.0 CVS log ![[TXT]](/cvsweb/icons/text.gif){kind=icon}
![[DIR]](/cvsweb/icons/dir.gif){kind=icon}
Up to [CSRG BSD Unix] / 43BSDReno / usr.bin / uucp