On Tue, Mar 27, 2007 at 04:49:05PM -0400, Mike Erdely wrote:
> I'm trying to get login_ldap to work with cvs pserver (run out of inetd).
>
> Regular SSH logins work fine.
> I know to make ftpd work with login_ldap, you have to make the following
> change in login.conf:
> - auth-ftp-defaults:auth-ftp=password:
> + auth-ftp-defaults:auth-ftp=-ldap:
>
> For trying to make pserver work, I _tried_ adding
> "auth-pserver-defaults:auth-pserver=-ldap:" to login.conf and
> ":tc=auth-pserver-defaults:\" to the "default" section in login.conf.
>
> I still can't login to pserver with my LDAP password. If I change my
> local password from no password to some password, I can login so pserver
> is working.
>
> Anyone know how to make pserver work with login_ldap?
I think you are misunderstanding some things, or doing something that
doesn't work; however, since I've never tried to set up a pserver, you'd
best check what I'm going to say next.
First, read login.conf(5), and note that just adding the above isn't
going to help any. You must define a new login class, at least, and
change master.passwd(5) to make sure the appropriate user has your newly
defined login class (the value of 'appropriate' depends on whether or
not the stuff below is correct...).
Then, you should have whatever daemon your users use to connect with the
usual BSD login mechanism (which might be called bsdauth, or whatever).
I don't believe GNU CVS does that, and OpenCVS doesn't do authentication
at all. Your best bet is probably setting up ssh; sshd uses the BSD
authentication routines by default.
However, unless I am sorely mistaken, by this point, there's no need to
set up inetd and what you have is a CVS repository, but *not* a pserver.
Joachim
