[rsbac] su utility that supports a separate password file
Rob See
rob at rsee.net
Tue Aug 3 20:31:39 CEST 2004
Hi,
I'm actually looking for something with no pam dependencies,
preferably something that can be compiled statically. I don't want it to
depend on anything that root might have control over.
Thanks,
-Rob
Sheplyakov Alexei wrote:
>On Tue, Aug 03, 2004 at 10:20:00AM -0400, Rob See wrote:
>
>
>>Hi,
>>
>> Does anyone know of a su like utility that can be configured to use a
>>different password file than the one the system uses ? My idea is to
>>deny all other setuid access to secoff except for this utility which
>>can store its password in a file controlled by secoff (so that root
>>can't just change the password to get access) I've done a bit of
>>searching, and the only things that have come close are from either
>>1990 or 1996, and they don't cleanly compile on Linux.
>>
>>
>
>There is a PAM module libpam-pwdfile, you can use it with standard su.
>
>See http://cpbotha.net/pam_pwdfile.html
>
>
>_______________________________________________
>rsbac mailing list
>rsbac at rsbac.org
>http://www.rsbac.org/mailman/listinfo/rsbac
>
>
More information about the rsbac
mailing list