On Wed, 5 Jan 2005, Chris Jensen wrote:
> > > Actually, shadow, group, passwd, etc... are not being vc-ed, for that
> > > very reason. They're not complex files, and I don't work heavily with
> > > them -- so why bother?
> >
> >
> > It really depends what you are doing, and what are yours requirements:
> > I would be very, very unhappy if some bit fungus eats those files, and
> > I had to re-create them from scratch (especially /etc/group).
>
> I don't keep any files with passwords in my repository for security reasons.
> In our environment, this means only ignoring shadow. group and passwd don't
> contain passwords (nor would they in most setups), so they should be safe to
> version.
> I'm pretty sure (though have not tested) that you can recreate
> shadow automatically from passwd should you have a catastrophic
> failure - of course you'll lose your passwords, but given it's a
> server I don't think there's more than 2 or 3 passwords in shadow
> (all other accounts are service accounts).
you'd also lose all password aging/expiration information, but that's
not as critical.
rday
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Wed Jan 5 09:45:27 2005