Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!convex!linac!mp.cs.niu.edu!fnnews!cdsun.fnal.gov!shah From: shah@cdsun.fnal.gov (Hemant Shah) Newsgroups: comp.unix.aix Subject: Re: Password Verification Message-ID: <503@fnnews.fnal.gov> Date: 28 Jun 91 19:31:01 GMT References: <16390@smoke.brl.mil> Sender: news@fnnews.fnal.gov Organization: Fermi Natioanl Accelerator Laboratory, Batavia IL Lines: 41 Nntp-Posting-Host: cdsun5.fnal.gov In article <16390@smoke.brl.mil>, somsky@brl.mil (William R. Somsky) writes: |> I'd like to put 'xlock' onto our systems, but I'm having difficulty |> with the unlock user verification part. What xlock normally does is ask |> for the user's password and compares this (via the appropriate encryption |> routines) with the entry found in /etc/passwd. With the passwords stored |> in /etc/security/passwd, however, this fails. Has anyone worked this out? |> Should I make xlock be suid root? What would be needed to read the |> /etc/security/passwd file? For getting the info out of /etc/passwd, |> there is some library routin (I forget the name just now) which reads |> the /etc/passwd file and extracts the relevant information. Is there |> an appropriate function for the /etc/security/passwd file? Does anyone |> have any suggestions? (And yes, I've already dealt with Ctl-Alt-Backspace.) |> |> ---------------------------------------------------------------------- |> I speak for no-one other than myself --- sometimes, not even that... |> ---------------------------------------------------------------------- |> William R. Somsky somsky@brl.mil When we proted xlock to our RS600 we had same problem. Our solution was to change the permission on the files, the /etc/security directory should look like : drwxr-xr-x 4 root security 512 May 01 18:03 security and the file permission in /etc/security should look like : -rw-r--r-- 1 root security 2853 Jun 26 09:32 passwd ------------------------------------------------------------------------------- Hemant Shah Fermilab ACCESS/System Integration E-mail :shah@fnal.fnal.gov Voice : (708) 840-8071 Fax : (708) 840-2783 -------------------------------------------------------------------------------