Subject: [netatalk-admins] Re: Feature Suggestion: AFP/TCP running as user, not root
From: Eugene Cohen (eugene@cegt201.bradley.edu)
Date: Fri Nov 14 1997 - 16:08:31 EST
At 1:15 PM -0600 11/14/97, a sun wrote:
>erk. i just realized that for the machines without appletalk built-in
>or already loaded, you'll have to disable that part from afpd.
You mean running with the noddp switch isn't enough? So afpd currently
needs to talk to the ddp implementation even if it's running over tcp only?
The other thing that I alluded to earlier is that, unless I'm mistaken and
that is quite possible, if the server is running a shadowed password
system, then only the root account can authenticate users using the host's
password files. Or am I mistaken in that there is some system call that
can authenticate a user without actually revealing the encrypted password?
This is why I thought there would have to be some code modification to
support a different password file, or perhaps a single password (since this
implementation would only be used by a single user). This wouldn't be too
difficult to hack, I think.
-Eugene
This archive was generated by hypermail 2b28 : Sat Dec 18 1999 - 16:28:07 EST