$Id: README,v 1.2 2006/02/03 15:24:52 gdt Exp $

BBN ACCOUNTS MANAGEMENT TOOLS ("ir-account")

This package contains four scripts to manage user accounts on multiple
machines.  Currently it is implemented only for NetBSD and FreeBSD.
It is a bit hackish, but shared in the hopes that it is either useful
or inspirational.

ASSUMPTIONS

This package assumes that home directories are in /home (which can be
a symlink, or the directories can actually be there).

This packages presumes an environment where passwords may be shared.

BUGS/TODO

This package does not translate shell names between /usr/pkg and
/usr/local, but it should.  It does not check that the user's shell
actually exists.

The code should be audited and cleaned up.  Do not run it on skeleton
files that you did not create yourself.

USAGE

# extract-account user

creates a tarball user-skel.tgz with the master.passwd line, the
user's .ssh/authorized_keys, and any files/directories named in
.extract_files in the user's homedir.

# install-account user-skel.tgz

Add the passwd line (replacing any that is present), create/chown the
homedir, unpack the .ssh/authorized_keys and any other files in the
skeleton tarball.

# delete-account user

Remove the user from /etc/master.passwd.  Do not delete the homedir.

# sudo-add [-r|-n] user

Add the user to sudoers.  With -n, add NOPASSWD.  With -r, remove the
user.  The user is removed if present before adding. so "sudo-add
user" will change from NOPASSWD (if that's the way it is) to normal,
and "sudo-add -n user" will change to NOPASSWD.
