Re: [exim] Options for authenticating against /etc/shadow (…

Top Page
Delete this message
Reply to this message
Author: Graeme Fowler
Date:  
To: exim users
Subject: Re: [exim] Options for authenticating against /etc/shadow (PAM)withoutmaking exim suid root
On Sun, 2009-03-15 at 12:03 +0100, Jurrie Overgoor wrote:
> Available at http://wiki.exim.org/AuthenticatedSmtpUsingPwauth


Great! Thanks - that's a pretty useful gadget.

There's only one gotcha I can see with this, which is that $run is an
expensive call due to the overhead of stat() or lstat() and the
subsequent exec() of the binary. In the example given there are two hits
- first to exec bash, the second to exec pwauth.

For a small system with few users this isn't a problem, but if there's
an expectation of many auths/second (which there could be in large
environments) this can be a limiting factor.

Just a point to watch out for :)

Graeme