[KLUG Members] PAM stuff - was: ssh lock a user in a single directory

Adam Tauno Williams members@kalamazoolinux.org
Mon, 10 May 2004 13:28:56 -0400

Previous message: [KLUG Members] PAM stuff - was: ssh lock a user in a single directory
Next message: [KLUG Members] Help! Konqueror driving me nuts
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> > > I don't have the same pam_xxx.so you have. I cannot find a pam_chroot.so 
> > > and such.
> > http://freshmeat.net/projects/pam_chroot/?
> > branch_id=50010&release_id=159754
> Speaking of PAM ...
> I have a Apache/PHP script where I'd like to call some IMAP functions 
> as a normal user, WITHOUT knowing (or inputting) the user's password.
> Can this be done with a PAM module in /etc/pam.d/imap somehow?
> Yes, this is kind of a backdoor IMAP password for all users,
> no need to explain the security implications.  :-)

If this is Cyrus, just adjust the ACL so some meta-user can access all
mailboxes.

If this is UW, I'd imagine you can rig something with pam_permit.
Precede it with some call to pam_listfile to reduce the level of
promiscuity.

Previous message: [KLUG Members] PAM stuff - was: ssh lock a user in a single directory
Next message: [KLUG Members] Help! Konqueror driving me nuts
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]