[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Nss-mysql-users] nss-mysql-root.conf
From: |
Jason Clifford |
Subject: |
Re: [Nss-mysql-users] nss-mysql-root.conf |
Date: |
Wed, 19 Jun 2002 16:23:41 +0100 (BST) |
On Wed, 19 Jun 2002, Jelmer Vernooij wrote:
> > How do you think a user can gain access if they have no access permissions
> > on the database themselves?
> >
> > The only thing a user can do is to query it via getpwent() which is the
> > same access they had previously when using /etc/passwd.
> In which case the (encrypted) passwords would be in /etc/shadow; data that
> was not available to the user via getpwent() then !
What makes you think that the same data (ie shadow entries) is available
to anyone other than root using nss-mysql?
I can assure you that it is not. Only uid 0 processes can read the shadow
entries.
Jason Clifford
- [Nss-mysql-users] Problems building, Chris Snyder, 2002/06/06
- Re: [Nss-mysql-users] Problems building, Guillaume Morin, 2002/06/06
- Re: [Nss-mysql-users] Problems building, Chris Snyder, 2002/06/06
- Re: [Nss-mysql-users] Problems building, Guillaume Morin, 2002/06/06
- [Nss-mysql-users] nss-mysql-root.conf, Nick De Decker, 2002/06/19
- Re: [Nss-mysql-users] nss-mysql-root.conf, Jason Clifford, 2002/06/19
- Re: [Nss-mysql-users] nss-mysql-root.conf, Jelmer Vernooij, 2002/06/19
- Re: [Nss-mysql-users] nss-mysql-root.conf, Jason Clifford, 2002/06/19
- Re: [Nss-mysql-users] nss-mysql-root.conf, Jelmer Vernooij, 2002/06/19
- Re: [Nss-mysql-users] nss-mysql-root.conf,
Jason Clifford <=