On Thu, Feb 01, 2001 at 11:44:05AM +0100, Stephane Bortzmeyer wrote: > > Just consider the case on hand: Any > > daemon has to be root to be able to use it. > No, just member of the 'shadow' group.
Ah, sorry, yes. I originally proposed that as a solution for the mod_auth_pam problem and since got so much negative feedback from webserver administrators that I forgot that its a valid approach for other cases. Still, does that invalidate the other points I made? I don't think so. So, my claim that shadow promises more than it fullfills (through no fault of its own, but nonetheless) still stands. Ingo
