The following programs should be installed root:root, 755, in /usr/bin,
WITHOUT the suid-bit set:

o	lastlog (show lastlog information)


The following programs should be installed root:root, 755, in /usr/sbin,
WITHOUT the suid-bit set:

o	add-shell (add a shell to the list of valid login shells)
o	chage (change password aging information)
o	chgroup (change group information)
o	chpasswd (change passwords in batch)
o	chuser (change user information)
o	cppw (copy a new passwd/group/shadow/gshadow file onto the existing
	      one with proper locking, backups etc.)
o	grpck (verify the integrity of the group file and its shadow)
o	mkgroup (create a new group account)
o	mkuser (create a new user account)
o	pwck (verify the integrity of the password file and its shadow)
o	rmgroup (remove a group account)
o	rmuser (remove a user account)
o	vipw (edit passwd/group/shadow/gshadow with proper locking,
	      backups etc.)
o	grpconv (convert an non-shadowed /etc/group to a shadowed)
o	grpunconv (convert a shadowed /etc/group to a non-shadowed)
o	pwconv (convert an non-shadowed /etc/passwd to a shadowed)
o	pwunconv (convert a shadowed /etc/passwd to a non-shadowed)
o	remove-shell (remove a shell from the list of valid login shells)

All of the above programs must be run as root.


The following programs should be installed root:root, 755, in /usr/bin/,
WITH the suid-bit set:

o	chfn (change real user name and other information)
o	chgrpmem (change membership list for a group)
o	chsh (change login shell)
o	newgrp (log in to a new group)
o	passwd (change a user password)
o	gpasswd (change a group password)
o	sg (change group id)

All of the above programs will fail to work for a normal user unless
installed with the suid-bit set.


The following programs should be installed root:shadow, 755, in /usr/bin/,
WITH the sgid-bit set:

o	lsage (list password aging information)

All of the above programs will fail to work for a normal user unless
installed with the sgid-bit set.


The following programs should be installed root:shadow, 755, in
/usr/bin/, WITH the sgid-bit set, but _can_ also be installed root:root,
755, in /usr/bin/, WITHOUT the suid-bit set (lsuser will lose the
possibility to let users know what groups they administrate and whether
their account is locked, and lsgroup will make group-administrators
unable to know what the administrators for their groups are):

o	lsuser (list information about users)
o	lsgroup (list information about groups)


The following programs should be installed root:tty, 755, in /usr/bin/,
WITH the sgid-bit set:

o	write (send a message to another user)
o	wall (write a message to users)

The above programs will fail to work for a normal user unless
installed with the sgid-bit set.


Additionally, the following symbolic links will be installed:

lrwxrwxrwx	root:root	/usr/bin/lastb	->	last    

lrwxrwxrwx	root:root	/usr/sbin/cpgr	->	cppw
lrwxrwxrwx	root:root	/usr/sbin/cpsp	->	cppw
lrwxrwxrwx	root:root	/usr/sbin/cpsg	->	cppw
lrwxrwxrwx	root:root	/usr/sbin/vigr	->	vipw
lrwxrwxrwx	root:root	/usr/sbin/visp	->	vipw
lrwxrwxrwx	root:root	/usr/sbin/visg	->	vipw

WARNING:

NEVER install any of the above programs with other permissions
than those specified, unless you REALLY know what you are doing.
These programs have been security-audited to some extent, but only
with the restrictions imposed above.
