Date: Sat, 10 Sep 2016 18:35:52 -0400 From: Garrett Wollman <wollman@bimajority.org> To: Jan Mikkelsen <janm@transactionware.com> Cc: freebsd-security@freebsd.org Subject: Re: Trying to think out a hack for NSS and pw(8) Message-ID: <22484.35528.306024.578131@hergotha.csail.mit.edu> In-Reply-To: <C924FA73-283C-4120-9F18-7BEF8B465DF4@transactionware.com> References: <22483.5592.653250.726711@hergotha.csail.mit.edu> <C924FA73-283C-4120-9F18-7BEF8B465DF4@transactionware.com>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Sat, 10 Sep 2016 17:31:02 +1000, Jan Mikkelsen <janm@transactionware.com> said: > We manage the two separate databases using the -V option to pw, and > then have a script to merge the two databases into the standard > local database. Thanks for the clue; if I can convince Puppet not to use getpwnam(3) et al then this looks like it will actually be the best option. I determined experimentally that simply adding "-V /etc" to the pw(8) command line will completely disable nsswitch and manipulate only the local passwd database, which is very nearly what I want. -GAWollman
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?22484.35528.306024.578131>