Hi Ben, I believe it works this way: The privileges that are available are stored in the virtual server's /etc/vsd/priv file. It also stores who has those privilieges. This means you can add your own privs and use them. The privs are checked by a PAM module called pam_vsd.so The programs that are pam compatible and that have a file that sets the privileges for that program (in /etc/pam.d) can be used with privileges.
For example, the file vm-pop3d in /etc/pam.d has the folowing lines in it: #%PAM-1.0 auth required /lib/security/pam_pwdb.so shadow account required /lib/security/pam_pwdb.so auth required /lib/security/pam_vsd.so priv=mail You see the pam_vsd line? It adds the restriction that you need the mail privilege to get your mail from your pop box. I checked all the files in /etc/pam.d and only the mail, telnet and ftp privs are used for as far as i can see. If i'm wrong than i would really like to hear it. Maarten -----Oorspronkelijk bericht----- Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]Namens Ben Kennish Verzonden: woensdag 31 juli 2002 18:07 Aan: FreeVSD Mailing List Onderwerp: 'net' priviledge Hi all, Anyone know what the 'net' priviledge does? I read somewhere about it granting ftp and telnet _from_ the virtual server but it doesn't seem to do this atm. Any ideas? Is it an old unused option? Kind Regards, Ben Kennish [EMAIL PROTECTED] ------------------------- The freeVSD Support List -------------------------- Subscribe: mailto:[EMAIL PROTECTED]?body=subscribe%20freevsd-support Unsubscribe: mailto:[EMAIL PROTECTED]?body=unsubscribe%20freevsd-support Archives: http://freevsd.org/support/mail-archives/freevsd-support ---------------------------------------------------------------------------- - ------------------------- The freeVSD Support List -------------------------- Subscribe: mailto:[EMAIL PROTECTED]?body=subscribe%20freevsd-support Unsubscribe: mailto:[EMAIL PROTECTED]?body=unsubscribe%20freevsd-support Archives: http://freevsd.org/support/mail-archives/freevsd-support -----------------------------------------------------------------------------
