From owner-freebsd-hackers Mon Nov 3 02:05:28 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id CAA22586 for hackers-outgoing; Mon, 3 Nov 1997 02:05:28 -0800 (PST) (envelope-from owner-freebsd-hackers) Received: from ns1.yes.no (ns1.yes.no [195.119.24.10]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id CAA22581 for ; Mon, 3 Nov 1997 02:05:22 -0800 (PST) (envelope-from eivind@bitbox.follo.net) Received: from bitbox.follo.net (bitbox.follo.net [194.198.43.36]) by ns1.yes.no (8.8.7/8.8.7) with ESMTP id KAA23967; Mon, 3 Nov 1997 10:05:20 GMT Received: (from eivind@localhost) by bitbox.follo.net (8.8.6/8.8.6) id LAA21994; Mon, 3 Nov 1997 11:05:19 +0100 (MET) Date: Mon, 3 Nov 1997 11:05:19 +0100 (MET) Message-Id: <199711031005.LAA21994@bitbox.follo.net> From: Eivind Eklund To: Tom CC: hackers@FreeBSD.ORG, perhaps@yes.no In-reply-to: Tom's message of Sun, 2 Nov 1997 16:17:11 -0800 (PST) Subject: Re: Password verification (Was: cvs commit: ports/x11/kdebase - Imported sources) References: <199711022355.VAA00864@gaia.coppe.ufrj.br> Sender: owner-freebsd-hackers@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk > > > On Sun, 2 Nov 1997, Joao Carlos Mendes Luis wrote: > > ... > > But, how to allow users check only their own password, and still > > have the added security of shadow passwords ? I can only think > > in a kind of password checking daemon that would accept commands > > on a AF_UNIX socket and some patches to libc pw commands. > > You can always use the pwcheck daemon from the Cyrus module (see ports). > It opens a unix socket at /var/pwcheck/pwcheck. Permissions on the > /var/pwcheck directory can be used to determine who can check passwords. Is it restricted to only let a user check his own password? Or could we make it only check a users own password fairly easily? The simplest solution I can see is to create a /usr/bin/checkpw which takes in a username/password on stdin, and checks that the username has the same ID as the users real ID, and exits with OK/failure. (And I don't care about the expense of exec'ing a program to check a password - checking passwords are supposed to be expensive.) How is the feeling about this kind of program - too much bloat? Security problem? Personally, I want it - less security problem than making other programs setuid. Eivind.