PAM bug in ckpasswd?

Julien ÉLIE julien at
Mon Mar 2 18:22:43 UTC 2009

Hi Martin,

> I think I came across a bug in ckpasswd regarding PAM.
> ckpasswd can't check the user auth via PAM if not run by the user in  question or root...
> When nnrpd is run as user news (uid 9 on debian), the user auth fails  if ckpasswd has no read access to shadow...

It works for me (running Debian Etch):

19:16 news at trigofacile ~/bin/auth/passwd% ./ckpasswd -f /home/news/etc/users-ssl -u test -p test

19:16 root at trigofacile /home/news/bin/auth/passwd# ./ckpasswd -f /home/news/etc/users-ssl -u test -p test

I kept the default:

19:18 root at news /etc/pam.d# cat other
@include common-auth
@include common-account
@include common-password
@include common-session

Julien ÉLIE

« -- Il l'aura voulu.
  -- Tu crois vraiment ? » (Astérix)

More information about the inn-bugs mailing list