e503981b22
configuration. Root privileges override DAC on local file systems and therefore root does not generally need to be a member of a group to access files owned by that group. In the NFS case, require explicit authorization for root to have these privileges. Leave root in operator for dump/restore broadcast reasons; leave root in wheel until discrepencies in the "no users in wheel means any user can su" policy are resolved (possibly indefinitely).
27 lines
306 B
Plaintext
27 lines
306 B
Plaintext
# $FreeBSD$
|
|
#
|
|
wheel:*:0:root
|
|
daemon:*:1:
|
|
kmem:*:2:
|
|
sys:*:3:
|
|
tty:*:4:
|
|
operator:*:5:root
|
|
mail:*:6:
|
|
bin:*:7:
|
|
news:*:8:
|
|
man:*:9:
|
|
games:*:13:
|
|
staff:*:20:
|
|
sshd:*:22:
|
|
smmsp:*:25:
|
|
mailnull:*:26:
|
|
guest:*:31:root
|
|
bind:*:53:
|
|
uucp:*:66:
|
|
xten:*:67:
|
|
dialer:*:68:
|
|
network:*:69:
|
|
www:*:80:
|
|
nogroup:*:65533:
|
|
nobody:*:65534:
|