adduser is what I usually use, it works well and is effective.
My *personal* opinion, the create there own account thing is a nice idea (especially if there are a lot of users) but if you are going to try setuid to root on it, be careful !!!
If doing that, I would use a custom program that restricts what things they can do -- for example blocking them from setting their own user and group ID numbers, allowing them to set their group(s) or restrained to only a few 'safe' groups you choose. The script can always wrap around the pw utility.
Stuff like that ;-)
Ok, so I am paranoid as much as I am lazy...
__________________
My Journal
Thou shalt check the array bounds of all strings (indeed, all arrays), for surely where thou typest ``foo'' someone someday shall type ``supercalifragilisticexpialidocious''.
|