Do not use mapuser functionality with useradd,userdel,usermod - libnss-mapuser.git - Package for mapping radius users to local users (mirror of https://github.com/vyos/libnss-mapuser.git)

diff options

author	Dave Olson <olson@cumulusnetworks.com>	2017-08-07 20:33:20 -0700
committer	Dave Olson <olson@cumulusnetworks.com>	2017-08-07 20:54:10 -0700
commit	527c42ab4e4d64650aab9d060f498ae3d34a2359 (patch)
tree	c9aab39784676529895b40f0b3c5e2608f34008d /debian
parent	d80fcfbb3c55561110bf0686c87fb949f866a88c (diff)
download	libnss-mapuser-527c42ab4e4d64650aab9d060f498ae3d34a2359.tar.gz libnss-mapuser-527c42ab4e4d64650aab9d060f498ae3d34a2359.zip

Do not use mapuser functionality with useradd,userdel,usermod

Ticket: CM-17450 Reviewed By: olson Testing Done: ran programs with change The useradd family will not work correctly with the mapuser/mapuid functionality, and useradd provides no method to force creating a user that already exists. So check which program invoked us, using __progname (getprogname() could also be used for non-glibc use), and return NOTFOUND immediately in that case. This is a major hack, but it's simple, and avoids a significant issue. Unfortunately, the RADIUS protocol gives us no way to determine that an account name is valid without also authenticating, and libnss plugins do not have the ability to authenticate.

Diffstat (limited to 'debian')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: