OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: SMTP Auth
From: Brad Knowles (blkskynet.be)
Date: Mon Aug 21 2000 - 17:44:16 CDT

At 2:54 PM -0700 2000/8/21, brian moore wrote:

> Actually, I think PAM may end up being somewhat useful for me... since I
> already have a RADIUS server, using pam_auth_radius should let me do
> authentication without putting my shadow file into the jail or taking
> smtpd out of the jail.

        Ooh, cool idea! I would never have thought of that.... Thanks!

> Should be easy for most ISP's that already have neato wrappers to sync
> passwd/shadow across machines and use 'sudo' wisely. (Ie, don't let the
> help desk people change -your- password, but let them change the
> passwords of users that can't remember their own)

        It would still be better to get it to make use of central
databases that already have to be kept for this sort of thing, such
as RADIUS. 

--
   These are my opinions -- not to be taken as official Skynet policy
======================================================================
Brad Knowles, <blkskynet.be>                || Belgacom Skynet SA/NV
Systems Architect, Mail/News/FTP/Proxy Admin || Rue Colonel Bourg, 124
Phone/Fax: +32-2-706.13.11/12.49             || B-1140 Brussels
http://www.skynet.be                         || Belgium

"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
     -Benjamin Franklin, Historical Review of Pennsylvania.