[rt-users] Something to consider re: Gecos field?
Jesse Vincent
jesse at bestpractical.com
Fri Dec 20 21:16:11 EST 2002
> It turns out that we had an RT user named 'davel' with the Unix login
> field set to 'dave'. This user didn't even have a Unix login, the
> field shouldn't have even been set. My coworker's RT name was 'dave'
> and his Unix login is also 'dave'.
>
> davel was an account that was privileged but had very little access.
> The UserId was 10 for davel, while dave's UserId was 19056. Thus, RT
> was effectively using davel's rights whenever dave was using RT's CLI.
>
> After I fixed the problem and thought about it for awhile, I wondered
> why RT would allow something like this to happen... Is this a bug or
> a feature?
It's a bug. Gecos should be required to be unique. send mail to
rt-2.0-bugs at fsck.com?
> - --
> Chris Tracy <chris at telerama.com>
> Telerama Public Access Internet
> Senior Network Engineer
> http://www.telerama.com
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.0.6 (FreeBSD)
> Comment: For info see http://www.gnupg.org
>
> iD8DBQE+A7FcODpZMT+19JERAi9qAJ9IdV9A/Q3w6jsJ8C89v6w6rs1+FgCgsJQO
> +xno2gALgtikqi5KWoNn6Eo=
> =m+hj
> -----END PGP SIGNATURE-----
>
>
> _______________________________________________
> rt-users mailing list
> rt-users at lists.fsck.com
> http://lists.fsck.com/mailman/listinfo/rt-users
>
> Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm
>
--
»|« http://www.bestpractical.com/rt -- Trouble Ticketing. Free.
More information about the rt-users
mailing list