Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Security mixup

From: "Gleb Paharenko" <gpaharenko () gmail com>
Date: Mon, 28 Jul 2008 18:16:20 +0300
Hi.

This a bit not clear. If your application can get users only from
password file, but you want it to get users from directory? Are you
sure
that it directly reads /etc/passwd but not uses getpwent library
calls? In case of library calls have you tried to use PAM and
nsswitch.conf?
In case it directy reads /etc/passwd it seems there is nothing to do,
except exporting though cron the list of users in /etc/passwd (or run
it chrooted environment with separe /etc/passwd).

2008/7/26  <naraharirao_kasturi () yahoo com>:

Our standard security system is Novell eDirectory (with LDAP extensions) with java as standard platform. All the 
current applications arte based on this. One vendor is  trying to load a C application and wants to use UNIX password 
file.  How to accommodate this?





-- 
Best regards.
Gleb Pakharenko.
http://gpaharenko.livejournal.com
http://www.linkedin.com/in/gpaharenko
Previous By Date Next
Previous By Thread Next

Current thread: