Piotr Roszatycki wrote:
The manpage tells that unix_chkpwd will only check the password of the user
invoking it. The webserver have to check the password of other users.
Ok, good point, but why's it even calling it then? Just out of
curiousity, what does call that program legitimately? It
On Wednesday 05 April 2006 19:56, David N. Welton wrote:
[EMAIL PROTECTED]:~# ls -l /sbin/unix_chkpwd
-rwxr-sr-x 1 root shadow 14988 Sep 12 2005 /sbin/unix_chkpwd
Shadow file is ok:
-rw-r- 1 root shadow 1437 Apr 5 17:55 /etc/shadow
I'm a little rusty with my unix security stuff,
Hi,
I have been looking at mod_auth_pam, and found this bug:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=246222
What I don't quite understand is the role of unix_chkpw, and why it's
failing.
If I set the +r bit on shadow, of course everything works like you say,
but unix_chkpw doesn't get
3 matches
Mail list logo
