Subject: [netatalk-admins] Re: Feature Suggestion: AFP/TCP running as user, not root
From: a sun (asun@zoology.washington.edu)
Date: Fri Nov 14 1997 - 16:12:32 EST
At 1:15 PM -0600 11/14/97, a sun wrote:
>erk. i just realized that for the machines without appletalk built-in
>or already loaded, you'll have to disable that part from afpd.
You mean running with the noddp switch isn't enough? So afpd currently
needs to talk to the ddp implementation even if it's running over tcp only?
-noddp is enough.
The other thing that I alluded to earlier is that, unless I'm mistaken and
that is quite possible, if the server is running a shadowed password
system, then only the root account can authenticate users using the host's
password files. Or am I mistaken in that there is some system call that
can authenticate a user without actually revealing the encrypted password?
if the server is using shadow passwords, there's always ~/.passwd and
using the 2-way randnum uam.
-a
This archive was generated by hypermail 2b28 : Sat Dec 18 1999 - 16:28:08 EST