1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
|
Source: mod-auth-shadow
Section: web
Priority: extra
Maintainer: Marcin Owsiany <porridge@debian.org>
Build-Depends: apache-dev, debhelper (>> 4)
Standards-Version: 3.6.1
Package: libapache-mod-auth-shadow
Architecture: any
Depends: ${shlibs:Depends}, apache-common
Description: An Apache module for authentication using /etc/shadow
When performing this task one encounters one fundamental
difficulty: The /etc/shadow file is supposed to be
read/writable only by root. However, the webserver is
supposed to run under a non-root user, such as "www-data".
.
mod_auth_shadow addresses this difficulty by opening a pipe
to an SGID shadow program "validate", which does the actual
validation. When there is a failure, validate writes an
error message to the system log, and waits three seconds
before exiting.
|
