Date: Fri, 25 Jan 2002 00:52:13 +0300 From: "Andrey A. Chernov" <ache@nagual.pp.ru> To: Dag-Erling Smorgrav <des@ofug.org> Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/lib/libpam/modules/pam_opieaccess pam_opieaccess.c Message-ID: <20020124215212.GC87013@nagual.pp.ru> In-Reply-To: <xzpadv3bf8x.fsf@flood.ping.uio.no> References: <200201241618.g0OGIi276333@freefall.freebsd.org> <20020124212631.GA86757@nagual.pp.ru> <xzpadv3bf8x.fsf@flood.ping.uio.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Jan 24, 2002 at 22:39:26 +0100, Dag-Erling Smorgrav wrote: > "Andrey A. Chernov" <ache@nagual.pp.ru> writes: > > if ((rhost == NULL || opieaccessfile(rhost)) > > > > This is not the way OPIE auth suppose. I.e. in non-PAM variant you may > > don't add local host to /etc/opieaccess file, but with this change you > > can't, it always there. > > I did it this way because opieaccessfile() always accepts an empty > (not NULL) host, but you're right. Hmm, yes. I think they do improper thing here always accepting "" since non-PAMed "ftp localhost" (see opieftpd.c) f.e. just not use this empty host part, so local.host.name addition to /etc/opieaccess needed in any case. I.e. accepting empty host does nothing for services which fills remote host. It seems they try to just cover seamless integration for programs that forget to set remote host. -- Andrey A. Chernov http://ache.pp.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020124215212.GC87013>