checkpassword-pam (Was: cvs-nserver)
Brought to you by:
tyranny
Menu
▾
▴
checkpassword-pam (Was: cvs-nserver)
|
From: Alexey M. <al...@hs...> - 2001-10-25 20:16:25
|
>>>>> "JW" == Jochen Witte <jw...@al...> writes: JW> Yes, correct: say you have a group called "cvs". When I have JW> /my/repository as perhaps "root.cvs" with permissions 770, then a JW> user can access the repository only if "cvs" is his PRIMARY group, JW> which - of cource - is not always correct, isn`t it? Ok, I knew about that bug. Too bad I haven't fixed that right away. The thing is that when upgrading to new checkpassword-0.90, we forgot to use the initgroups() call there. Jacob, may I ask you two things: a) if possible, could you add the initgroups() call to your sources, and b) please send me the sources in a simple .tar.gz format, not in .src.rpm which my rpm don't understand. Thanks a lot. I'll finally put that as a cvs-nserver module to SourceForge. Jochen, you may currently use older (0.81, I believe) version of checkpassword-pam, taken from cvs-nserver 1.10.8.4 (sources attached). Just untar that and do the $ make checkpassword-pam there. This version requires the name of /etc/pam.d/ file to be the first argument, that is: cvs-pserver /repos1 ... /reposN -- /usr/bin/checkpassword-pam cvspserver cvs pserver Where the "cvspserver" is how the file in /etc/pam.d/ called. I believe Jacob's version uses an environment variable for that purpose (BTW, I don't think that's that good an idea, but nevertheless). I'll reimplement the PAM'ified checkpassword from scratch with a proper Autoconf build environment soon. Thanks for patience, feel free to contact me, --alexm |
