Re: getpwnam with md5 encrypted passwds
From: Terry Lambert (tlambert2_at_mindspring.com)
Date: 11/27/03
- Previous message: Terry Lambert: "Re: NFS Flags Oddity"
- Maybe in reply to: sapdb_at_komadev.de: "getpwnam with md5 encrypted passwds"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Wed, 26 Nov 2003 22:53:00 -0800 To: Peter Pentchev <roam@ringlet.net>
Peter Pentchev wrote:
> On Wed, Nov 26, 2003 at 02:21:04PM +0100, Kai Mosebach wrote:
> > Looks interesting ... is this method also usable, when i dropped my privs ?
>
> I think Terry meant pam_authenticate() (not pan), but to answer your
> question: no, when you drop your privileges, you do not have access to
> at least the system's password database (/etc/spwd.db, generated from
> /etc/passwd and /etc/master.passwd by pwd_mkdb(8)). If this will be any
> consolation, getpwnam() won't return a password field when you have
> dropped root privileges either.
Peter is correct on both counts. If I had not sen his reply
first, I would have made the same reply. You cannot crypt
something you cannot read.
-- Terry
_______________________________________________
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"
- Previous message: Terry Lambert: "Re: NFS Flags Oddity"
- Maybe in reply to: sapdb_at_komadev.de: "getpwnam with md5 encrypted passwds"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
