Re: best way to remotely manage user credentials

To: debian-isp@lists.debian.org
Subject: Re: best way to remotely manage user credentials
From: Matus UHLAR - fantomas <uhlar@fantomas.sk>
Date: Tue, 13 May 2008 09:38:58 +0200
Message-id: <[🔎] 20080513073858.GA25771@fantomas.sk>
Mail-followup-to: debian-isp@lists.debian.org
In-reply-to: <[🔎] d1473ad90805120921o75233451l945fd960b70bfe83@mail.gmail.com>
References: <[🔎] d1473ad90805120921o75233451l945fd960b70bfe83@mail.gmail.com>

On 12.05.08 18:21, Wojciech Ziniewicz wrote:
> I would like to hear some word in my problem.
> I have X servers with pam authentication and  ssh daemon.
> People use ftp servers and run their applications but there should be
> one central server that will manage passwords and users.
> 
> I would like to use something like
> 
> /usr/bin/changepassword <server_address> <user> <newpassword>

just note that when someone does 'ps' on machine you when execute this
script, (s)he can see arguments, therefore the password. Yes, grsecurity
patch can prevent ordinary people from seeing the password, but this is
usually not taken as secure...

-- 
Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The only substitute for good manners is fast reflexes.

Reply to:

Follow-Ups:
- Re: best way to remotely manage user credentials
  - From: "Wojciech Ziniewicz" <wojciech.ziniewicz@gmail.com>

References:
- best way to remotely manage user credentials
  - From: "Wojciech Ziniewicz" <wojciech.ziniewicz@gmail.com>

Prev by Date: Re: best way to remotely manage user credentials
Next by Date: Re: best way to remotely manage user credentials
Previous by thread: Re: best way to remotely manage user credentials
Next by thread: Re: best way to remotely manage user credentials
Index(es):
- Date
- Thread