Project

General

Profile

Actions
Copy link

Feature #1692

closed

Add support for /etc/passwd in auth

Added by trajano almost 17 years ago. Updated about 1 year ago.

Status:
Fixed
Priority:
Normal
Category:
mod_auth
Target version:
-
ASK QUESTIONS IN Forums:
No

Description

Add an auth backend that uses the system authentication (e.g. /etc/passwd).

Actions
Copy link
 #1

Updated by gstrauss over 8 years ago

  • Description updated (diff)
  • Category changed from core to mod_auth
  • Status changed from New to Wontfix
  • Assignee deleted (jan)

This sounds like a very bad idea since it might be the same credentials needed to log into the system with a shell, if, say, ssh is externally available. Even without that, extensive logic would be needed to attempt to curtail and slow down brute force attacks. Also, this would likely require elevated privileges (root), or, better, a separate (privileged) agent, and logic would need to be added keep lighttpd non-blocking while waiting for a response. (Such is true for other database-backed auth mechanisms, too)

Future work in lighttpd 1.4.x might make it easier to write custom auth backends, but I do not see lighttpd providing a backend for /etc/passwd, though there is the possibility of a PAM-based auth.

Actions
Copy link
 #2

Updated by gstrauss about 1 year ago

  • Status changed from Wontfix to Fixed
  • Target version deleted (1.5.0)
  • ASK QUESTIONS IN Forums set to No

mod_auth mod_authn_pam option was added to lighttpd 1.4.51 for #688

Actions
Copy link

Also available in: Atom