search for: pwent

i think our strategy for privsep is to just keep portable sync'd closely with openbsd's tree, even though things will be broken wrt privsep for many platforms. then we just get primary one's working and work out issues as we go along. i'll start to work on sun and hp-ux again tomorrow.

...that runs into the same problem but solved it!) suggest me to add this line in smbfax-html.pl (that is the script that create the 2 files described up...) but seems that on my system all is ignored (why?): sub file_owner { my $file = shift; my @statent = stat($file) or return undef; my @pwent = getpwuid($statent[4]); # Put username in uppercase $pwent[0] =~ tr/[a-z]?/[A-Z]?/; ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ return $pwent[0]; } Sorry for the long mail, but its necessary to better explain my problem, the last step in the configuration of "my" fax server... Thanks a...

I wrote a small app that monitors a Back-UPS ES500 UPS via the uhid0 interface. I want to run the daemon with as little privs as possible. gastest# ls -l /dev/uhid0 crw-rw---- 1 root operator 122, 0 Nov 12 05:26 /dev/uhid0 gastest# Is it safe to chmod o+r /dev/uhid0 ? Or is there a better way to drop privs of the daemon yet still be able to read from the device ? All I am doing is

Hallo Everyone, Please answer to: http://lists.samba.org/pipermail/samba/2002-November/084692.html Thanks a lot in advance, Gianluigi Di Vaio

...perror("initgroups"); SYSLOG((LOG_ERR, "initgroups failed for user `%s': %m\n", info->pw_name)); closelog(); return -1; } [snip] And src/login.c line 960: setup_uid_gid(&pwent, is_console); Does this look bad to anyone else? The call to setup_uid_gid() in login.c does no checking of the return value. If initgroups cannot open /etc/group, the setup_uid_gid() function returns before it gets around to the setgid() and setuid() calls (hence the uid and gid are both still 0)...

...connect and download the passwd/group files if anything changed since the last time the connected. The server would also only obviously generate new passwd/group data when something changes. The clients would then install the mapped passwd / group entries in /etc/passwd and /etc/group. The proper pwent locking is done during /etc file update by the client to prevent other applications from getting inconsistent pwent calls during an update. The clients can do winbind PAM, but simply use files in nsswitch.conf -- it works great. It may not scale as well as pure NIS or LDAP backends etc., but it...

I have been trying to compile OpenSSH_4.7p1 for OS/390 and got really stuck. IBM released a build of v3.8.1p1 several years ago, but I do not know whether anyone else has ever managed to compile it for OS/390 or OS/z. The first problem is that the build apparently performs ssh transport exchange using EBCDIC character encoding instead of ASCII (which breaks RFC 4253) and I am not sure how to do

>>>>> <seifried@seifried.org> writes: > I was looking around for a book specifically on Linux security a week or > two ago, and couldn''t find any. I wanted something Linux specific as > opposed to say O''Reilly''s yellow safe book. There are actually Linux-specific details in Practical; I put some of them there. They are not, however,

Hello, at my universities CS computer pools we're trying to migrate our samba3 based NT domain to AD with samba4-rc1. In the past we had a little script which our users could run on their own from their linux account which created a samba user with their own uid/gid and set their password (via smbpasswd). We're trying to recreate this behaviour with "samba-tool user create"

...hannels * file_info_.bits_per_sample, file_info_.sample_rate, file_info_.channels); + } + } + + static gchar* homedir() + { + gchar *result; + char *env_home = getenv("HOME"); + if (env_home) { + result = g_strdup (env_home); + } else { + uid_t uid = getuid(); + struct passwd *pwent; + do { + pwent = getpwent(); + } while (pwent && pwent->pw_uid != uid); + result = pwent ? g_strdup (pwent->pw_dir) : NULL; + endpwent(); + } + return result; + } + void FLAC_XMMS__init() { ConfigFile *cfg; *************** *** 181,187 **** if(!xmms_cfg_read_in...

...users to receive credentials of other users. It is recommended that all users update to the fixed packages. 2. Relevant releases/architectures: Red Hat Linux 7.1 - alpha, i386, ia64 3. Problem description: A problem existed in /bin/login's PAM implementation; it stored the value of a static pwent buffer across PAM calls; when used with some PAM modules in non-default configuration (such as pam_limits), it would overwrite the buffer, causing a user to get credentials of another user. Thanks go to Tarhon-Onu Victor <mituc@ac.tuiasi.ro> for bringing the problem to our attention, and to...

...ons on some files) - this bug was accidentally reintroduced in Red Hat Linux 7.2. 2. Relevant releases/architectures: Red Hat Linux 7.1 - alpha, i386, ia64 Red Hat Linux 7.2 - i386 3. Problem description: A problem existed in /bin/login's PAM implementation; it stored the value of a static pwent buffer across PAM calls; when used with some PAM modules in non-default configuration (such as pam_limits), it would overwrite the buffer, causing a user to get credentials of another user. Thanks go to Tarhon-Onu Victor <mituc@ac.tuiasi.ro> for bringing the problem to our attention, and to...

...sable ProxyJump functionality. bz#2869 Bugfixes -------- * sshd(8): avoid observable differences in request parsing that could be used to determine whether a target user is valid. * all: substantial internal refactoring * ssh(1)/sshd(8): fix some memory leaks; bz#2366 * ssh(1): fix a pwent clobber (introduced in openssh-7.7) that could occur during key loading, manifesting as crash on some platforms. * sshd_config(5): clarify documentation for AuthenticationMethods option; bz#2663 * ssh(1): ensure that the public key algorithm sent in a public key SSH_MSG_USERAUTH_REQUES...

...sable ProxyJump functionality. bz#2869 Bugfixes -------- * sshd(8): avoid observable differences in request parsing that could be used to determine whether a target user is valid. * all: substantial internal refactoring * ssh(1)/sshd(8): fix some memory leaks; bz#2366 * ssh(1): fix a pwent clobber (introduced in openssh-7.7) that could occur during key loading, manifesting as crash on some platforms. * sshd_config(5): clarify documentation for AuthenticationMethods option; bz#2663 * ssh(1): ensure that the public key algorithm sent in a public key SSH_MSG_USERAUTH_REQUES...

...quot;%s: signature %p(%u)", __func__, signature, siglen); buffer_clear(m); - buffer_put_string(m, signature, siglen); + buffer_put_binary(m, signature, siglen); xfree(p); xfree(signature); @@ -574,7 +574,7 @@ authctxt->valid = 1; buffer_put_char(m, 1); - buffer_put_string(m, pwent, sizeof(struct passwd)); + buffer_put_binary(m, pwent, sizeof(struct passwd)); buffer_put_cstring(m, pwent->pw_name); buffer_put_cstring(m, "*"); buffer_put_cstring(m, pwent->pw_gecos); @@ -937,7 +937,7 @@ type = buffer_get_int(m); cuser = buffer_get_string(m, NULL); cho...

On Thu, Jul 21, 2016 at 12:31 PM, Selphie Keller <selphie.keller at gmail.com> wrote: > Ahh i see, just got up to speed on the issue, so seems like the issue is > related to blowfish being faster then sha family hashing for longer length > passwords, or the system's crypt() not understanding $2a$ -style salts, which most glibcs don't. On those, crypt fails immediately due

Hi I have mailed about this previously, but back then it was not really confirmed, so I have let it be at that. Anyhow, problem is that for some reason 2.5/2.6 ext3 with HTREE support do not like what perl-5.8.0 does during installation. It *seems* like one of the temporary files created during manpage installation do not get unlinked properly, or gets into the hash (this possible?) and cause

Hi All. For various reasons, we're currently looking at extending (or even overhauling) the config parser used for sshd_config. Right now the syntax I'm looking at is a cumulative "Match" keyword that matches when all of the specified criteria are met. This would be similar the the Host directive used in ssh_config, although it's still limiting (eg you can't easily

...-tool dns serverinfo <server>' for IPv6. o Volker Lendecke <vl at samba.org> * BUG 10932: pdb_tdb: Fix a TALLOC/SAFE_FREE mixup. * BUG 10942: dbwrap_ctdb: Pass on mutex flags to tdb_open. o Justin Maggard <jmaggard10 at gmail.com> * BUG 10852: winbind3: Fix pwent variable substitution. o Kamen Mazdrashki <kamenim at samba.org> * BUG 10975: ldb: version 1.1.18 o Stefan Metzmacher <metze at samba.org> * BUG 10781: tdb: version 1.3.3 * BUG 10911: Add support for SMB2 leases. * BUG 10921: s3:smbd: Fix file corruption using &q...

...-tool dns serverinfo <server>' for IPv6. o Volker Lendecke <vl at samba.org> * BUG 10932: pdb_tdb: Fix a TALLOC/SAFE_FREE mixup. * BUG 10942: dbwrap_ctdb: Pass on mutex flags to tdb_open. o Justin Maggard <jmaggard10 at gmail.com> * BUG 10852: winbind3: Fix pwent variable substitution. o Kamen Mazdrashki <kamenim at samba.org> * BUG 10975: ldb: version 1.1.18 o Stefan Metzmacher <metze at samba.org> * BUG 10781: tdb: version 1.3.3 * BUG 10911: Add support for SMB2 leases. * BUG 10921: s3:smbd: Fix file corruption using &q...