On Thu, 28 Mar 2002, Raju Mathur wrote: > to use the passwd utility. Another possibility is to replace passwd > with a wrapper which checks the user ID before calling the original > program, but that's more of a hack and smells strongly of security by > obscurity (as does the idea of putting passwd in /sbin). > > The ideal way to do it, of course, would be to add a PAM module.
PAM is the best way, since it's what's used anyway. It would also be the simplest way, because all that would be required is to add something to /etc/pam.d/passwd - and to write the relevant module obviously. like the chgrp method though, quick, clean and simple. Would have to be documented though, so that later sysadmins know why passwd works for some users and not for others. -- nohup rm -fr /& _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
