> I was sure that libpam to acces shadow uses some suid helper program.
> So i was wrong about it...
There is a suid helper program in pam_unix, called unix_chkpwd. But for
obvious reasons it only allows to check the password of the current
user, which is in turn used by programs like gnome-scree
sure, or you can use LDAP, *SQL or whatever for auth - but there is no
sensible default.
--
Integrate nagios users with system ones
https://bugs.launchpad.net/bugs/562146
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs ma
You want to be using saslauthd and apache's mod-authn-sasl. Then you
don't need to give httpd access to /etc/shadow.
--
Integrate nagios users with system ones
https://bugs.launchpad.net/bugs/562146
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
I was sure that libpam to acces shadow uses some suid helper program.
So i was wrong about it...
--
Integrate nagios users with system ones
https://bugs.launchpad.net/bugs/562146
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu
Speaking with my nagios3 maintainer in debian hat on
> Why www-data would have to read shadow file?
> What about using pam modules?
even libpam needs access to the password hashes. Just by using libpam you don't
get magically access to them.
Citing from libapache2-mod-auth-pam package:
To use
Why www-data would have to read shadow file?
What about using pam modules?
With that - authentication could use not only local user database, but also
ldap, or either mechanism...
karaluh - better place to ask about such thinks would be nagios mail
list, so you should start looking closer to sour
We had a short discussion and Alexander Wirt raised a very important
part:
Enabling the webinterface to authenticate against system users would
technicly mean that one would have to enable the webserver to read the
shadow file. The shadow file is readable only by root on intention and
opening that
Sorry ... using system users within nagios is in my eyes a security
problem, but maybe I'm wrong.
Jan, with his debian nagios maintainers hat on.
--
Integrate nagios users with system ones
https://bugs.launchpad.net/bugs/562146
You received this bug notification because you are a member of Ubunt
root is disabled by default. The thing that I realy don't like is
creating users for every software I use.
--
Integrate nagios users with system ones
https://bugs.launchpad.net/bugs/562146
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
Do you guys really think, that using system users would be a good idea?
Do you like to login to the nagios webinterface as root?
--
Integrate nagios users with system ones
https://bugs.launchpad.net/bugs/562146
You received this bug notification because you are a member of Ubuntu
Bugs, which is s
** Changed in: nagios3 (Ubuntu)
Status: New => Confirmed
--
Integrate nagios users with system ones
https://bugs.launchpad.net/bugs/562146
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@li
** Changed in: nagios3 (Ubuntu)
Importance: Undecided => Wishlist
--
Integrate nagios users with system ones
https://bugs.launchpad.net/bugs/562146
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bu
** Attachment added: "Dependencies.txt"
http://launchpadlibrarian.net/44007020/Dependencies.txt
--
Integrate nagios users with system ones
https://bugs.launchpad.net/bugs/562146
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubu
13 matches
Mail list logo
