Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!usc!rpi!zaphod.mps.ohio-state.edu!cis.ohio-state.edu!ucbvax!agate!agate!rusty
From: rusty@groan.Berkeley.EDU (Rusty Wright)
Newsgroups: comp.protocols.appletalk
Subject: cap 6.0 and Ultrix 4.n enhanced security
Message-ID: <RUSTY.91May28152417@groan.Berkeley.EDU>
Date: 28 May 91 23:24:17 GMT
Sender: root@agate.berkeley.edu (Charlie Root)
Distribution: comp
Organization: University of California Berkeley
Lines: 44

Has anybody put in the fixes to make Cap 6.0 work with Ultrix 4.n
enhanced security?  I made the mistake of turning on enhanced security
and it breaks any pd programs that read the password field.  As an
example of some of what needs to be done, here's a little test program
to read the encrypted password entry for user "somebody".  I can
probably do the work myself but I'd rather not reinvent this wheel if
someone has already done so.

# include <sys/svcinfo.h>
# include <sys/types.h>

# include <auth.h>
# include <pwd.h>
# include <stdio.h>

main() {
	extern AUTHORIZATION	*getauthuid();
	AUTHORIZATION		*au;
	struct svcinfo		*si;
	struct passwd		*pw;

	if ((pw = getpwnam("somebody")) == NULL) {
		fprintf(stderr, "can't get pwent for somebody\n");
		exit(1);
	}


	if (strcmp(pw->pw_passwd, "*") == 0) {
		si = getsvc();

		if ((si->svcauth.seclevel == SEC_UPGRADE) ||
		    (si->svcauth.seclevel == SEC_ENHANCED)) {
			if ((au = getauthuid(pw->pw_uid)) == NULL) {
				fprintf(stderr, "getauthuid(%d) error\n",
					pw->pw_uid);
				exit(1);
			}

			pw->pw_passwd = au->a_password;
		}
	}

	printf("%s=%s\n", pw->pw_name, pw->pw_passwd);
}