Torsten Landschoff wrote: > If you open up access to /etc/shadow you are doing something very wrong.
I forgot to mention that finally I've used a combination of: libapache2-mod-authnz-external + pwauth http://packages.debian.org/squeeze/libapache2-mod-authnz-external http://packages.debian.org/squeeze/pwauth with a wrapper: exec sudo -u www-data /usr/sbin/pwauth and the line in /etc/sudoers: nagios ALL=(www-data) NOPASSWD: /usr/sbin/pwauth because I use Nagios web UI through Apache2 and pwauth has a security feature allowing only UID 33 to run itself. -- Marcin Szewczyk http://wodny.org mailto:[email protected] <- remove b / usuĊ b xmpp:[email protected] xmpp:[email protected] -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
