Morgan,
I’m new to information security and trying to learn what some of the default system account IDs such as listen, nobody, nobody4, and noaccess do or waht their functions are so I can justify them as part of a generic ID registration process. Do you have any ideas or can you point me to a good link that would contain this info. I’ve spent about 2 hours today surfing the web for answers and found about half of the answers, but the IDs above are still eluding me.
Thanks
Short answer, "yes":
$ grep listen /etc/passwd
listen:x:37:4:Network Admin:/usr/net/nls:
Note, however, that it is not a *login* account:
# grep listen /etc/shadow
listen:*LK*:::::::
This may mean that it is used by a daemon which
doesn’t always want to work under uid 0. You might
take note that there *is* a "listen" daemon, which
might be a pretty good place to start investigating 
Also, see:
man listen
man nlsadmin
March 1st, 2010 at 3:30 am
Short answer, "yes":
$ grep listen /etc/passwd
listen:x:37:4:Network Admin:/usr/net/nls:
Note, however, that it is not a *login* account:
# grep listen /etc/shadow
listen:*LK*:::::::
This may mean that it is used by a daemon which
doesn’t always want to work under uid 0. You might
take note that there *is* a "listen" daemon, which
might be a pretty good place to start investigating
Also, see:
man listen
man nlsadmin
References :
March 1st, 2010 at 4:03 am
Because this is very specific to Sun/Solaris,
you should consider asking this question of one
of the communities at:
http://www.opensolaris.org
The people who are most likely able to answer
this will be hanging out there.
References :