retitle 295526 libpam_unix2 only works as root thanks On Wed, Feb 16, 2005 at 02:33:59PM +0100, Christoph Pleger wrote: > Hello, > > I discovered that various screen locking programs (xlock, kcheckpass, > xscreensaver, vlock) have problems to authenticate a user when using > pam_unix2. The reason was evident for me: these programs are not setuid > root.
Hm, introducing such a helper program can introduce a security hole if not done carefully, also, with pam it's afaik usually expected that the calling program makes sure it's root, rather than the pam module for obvious security reasons. It's up to the maintainer, but I'm not sure it's a good idea to add this external binary thing just before sarge is about to be released, and I suggest to ask for advice on this (on debian-devel@lists.debian.org for example) if you plan to do so with the intention to get the change in sarge. --Jeroen -- Jeroen van Wolffelaar [EMAIL PROTECTED] http://jeroen.A-Eskwadraat.nl -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
