[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: pam_mkhomdir fix(ldap, su problem)

On Sun, Jul 06, 2003 at 02:20:25PM -0400, Doctor High wrote:
> On Sun, 2003-07-06 at 18:54, Steve Langasek wrote:
> > On Sun, Jul 06, 2003 at 01:48:59PM -0400, Doctor High wrote:
> > >   I've had the same prolem as Troels. It really appears that the
> > > problems depend on what user the pam_mkhomedir module is run as. For
> > > instance, it works fine with older versions of sshd without priviledge
> > > separation where it runs as root, but it fails under the newer sshd with
> > > priv_sep, and it appears that pam_mkhomedir is being run as the user
> > > instead of root. If I am correct about this, then it makes sense that
> > > the pam_mkhomedir would fail under the prov_sep version of sshd, since a
> > > normal user will *not* be able to write to /home to create his home
> > > directory. 
> > >   So the issue for me and Troels is: how can we force pam_mkhomedir to
> > > run as root so that it will be able to work with the file permissions on
> > > /home to create the home directory?

> > Convince the OpenSSH maintainers that the current behavior is incorrect,
> > and get them to change it.

> Suppose I should do the same for su as well? :-)

Probably so....

Steve Langasek
postmodern programmer

Attachment: pgp00004.pgp
Description: PGP signature

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []