Date: Fri, 26 Mar 1999 15:09:46 -0800 (PST) From: John Polstra <jdp@polstra.com> To: Jaime Bozza <wheelman@nuc.net> Cc: stable@FreeBSD.ORG Subject: RE: PAM and Apache Message-ID: <XFMail.990326150946.jdp@polstra.com> In-Reply-To: <000f01be77d1$135413e0$313d31cc@nuc.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Jaime Bozza wrote: >> In article <001301be77a7$904c0ee0$313d31cc@nuc.net>, >> Jaime Bozza <wheelman@nuc.net> wrote: >> > >> > Ok... I got that part working. :) But it still seems to not want to >> > validate a password. Is PAM subject to the same issues with getpwnam()? >> > (Unless your effective uid is 0, it returns '*' for a password) >> >> Yes. The PAM module calls getpwnam(). > > <sigh> Looks like this won't be easy for me. :) Oh well. Well, I'm sure you understand the basic problem. The /etc/master.passwd file is readable only by root, so you have to be UID 0 to use it for authentication. About the only way for a non-root process to use it is to contact a daemon (running as root) that will read the file and perform the authentication. One possibility for you would be to run a RADIUS server (as root, of course) on the same machine, and use the pam_radius module to contact it. Most (if not all) of the RADIUS servers can be configured to authenticate via the passwd file. John --- John Polstra jdp@polstra.com John D. Polstra & Co., Inc. Seattle, Washington USA "Self-interest is the aphrodisiac of belief." -- James V. DeLong To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.990326150946.jdp>