[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 27 Feb 2013 10:09:18 +0100
From: Daniel Cegiełka <daniel.cegielka@...il.com>
To: musl@...ts.openwall.com
Subject: Re: shadow.h
2013/2/27 Rich Felker <dalias@...ifal.cx>:
> On Tue, Feb 26, 2013 at 11:54:58PM +0100, Daniel Cegiełka wrote:
>> Error relocating /lib/security/pam_unix.so: putspent: symbol not found
>> Error relocating /lib/security/pam_unix.so: fgetspent: symbol not found
>> Error relocating /lib/security/pam_unix.so: putpwent: symbol not found
>
> These have been discussed before and I believe the intent is to add
> them (they're simple fprintf wrappers, if I remember correctly),
...or can be removed from shadow.h.
> but
> be aware that pam_unix.so's support for writing to the password
> database assumes a certain form and will break things badly if the
> user is using tcb shadow. It might also mess up the shadow file if it
> depends on being able to iterate all entries in the shadow file; I'm
> not sure if that works or not.
>
> These are issues that need more discussion...
I prefer tcb, but the current implementation in musl isn't as
functional as owl's (privilege separation):
http://cvsweb.openwall.com/cgi/cvsweb.cgi/Owl/packages/tcb/tcb/libs/libtcb.c?rev=1.9;content-type=text%2Fplain
Daniel
Powered by blists - more mailing lists
Confused about mailing lists and their use?
Read about mailing lists on Wikipedia
and check out these
guidelines on proper formatting of your messages.
