root login

Austin Gonyou austin at coremetrics.com
Tue May 7 13:13:58 EDT 2002


I would think that is possible, though probably unsupported by krbdev.
(imho)

There would be some need to check the UID of the user logging in(a
possible attack scenario) and then perform a passwd/shadow based login
for that user. It should be possible, but I'm not sure what that does to
the integrity of the login. 


On Tue, 2002-05-07 at 11:39, Marc wrote:
> Austin Gonyou wrote:
> 
> > AHhhh..I see...now it makes sense...hrmmm..I don't know how you could
> do
> > that then.
> 
> 
> There must be a way, how about modifying the code of login.krb5 to make 
> root account always get checked via /etc/passwd and /etc/shadow ???
> 
> Regards
> 
> ________________________________________________
> Kerberos mailing list           Kerberos at mit.edu
> http://mailman.mit.edu/mailman/listinfo/kerberos
-- 
Austin Gonyou
Systems Architect, CCNA
Coremetrics, Inc.
Phone: 512-698-7250
email: austin at coremetrics.com

"It is the part of a good shepherd to shear his flock, not to skin it."
Latin Proverb
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: This is a digitally signed message part
Url : http://mailman.mit.edu/pipermail/kerberos/attachments/20020507/c4b5a88e/attachment.bin


More information about the Kerberos mailing list