Hi all,
I need to checkout if a given user is a valid user by PAM.
I have faced that I can only check this out with root permissions, but I don't want to run Apache with root permissions. There's any way to change this to allow an other user to do this?
I'm using a HP-UX 11.11 PA-RISC 2.0
I'm using this small script to test this:
======
#!/opt/perl/bin/perl
use Authen::PAM;
$service = "php";
$username = $ARGV[0];
$password = $ARGV[1];
print "Usage:
\n" if ( $ARGV[0] eq "" );
sub my_conv_func
{
my @res;
while ( @_ )
{
my $code = shift;
my $msg = shift;
my $ans = "";
$ans = $username if ($code == PAM_PROMPT_ECHO_ON() );
$ans = $password if ($code == PAM_PROMPT_ECHO_OFF() );
push @res, (PAM_SUCCESS(),$ans);
}
push @res, PAM_SUCCESS();
return @res;
}
ref($pamh = new Authen::PAM($service, $username, \&my_conv_func)) ||
die "Error code $pamh during PAM init!";
$res = $pamh->pam_authenticate;
if ( $res == PAM_SUCCESS() )
{
print "Password OK!\n";
}
else
{
print "Password incorrect!\n";
print $pamh->pam_strerror($res)."\n";
}
