[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Usermode request: add patch enabling group membership to control auth user

From: Matthew Miller <mattdm mattdm org>
To: fedora-test-list redhat com, fedora-devel-list redhat com
Cc:
Subject: Re: Usermode request: add patch enabling group membership to control auth user
Date: Fri, 16 Apr 2004 09:48:26 -0400

On Fri, Apr 16, 2004 at 02:58:27PM +0200, Miloslav Trmac wrote:
> > My patch implements what I call a "sudo-like" behavior (although it is
> > much simpler than sudo). Each program, through its console.apps config
> > file, can have a list of groups whose members are able to authorize as
> > themselves. Anyone not a member of the approved groups either must give
> > the root password (or the password of a given user, or is denied access
> > completely via a new <none> value).
> Shoudn't this be already possible using PAM (e.g. pam_listfile)?

I don't think so. How would you do it? The selection of user account to
authorize against (root, or <user>, or even some other account) happens at a
earlier/higher level.


-- 
Matthew Miller           mattdm mattdm org        <http://www.mattdm.org/>
Boston University Linux      ------>                <http://linux.bu.edu/>

Follow-Ups:
- Re: Usermode request: add patch enabling group membership to control auth user
  - From: Miloslav Trmac

References:
- Usermode request: add patch enabling group membership to control auth user
  - From: Matthew Miller
- Re: Usermode request: add patch enabling group membership to control auth user
  - From: Miloslav Trmac

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]