home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
Columbia Kermit
/
kermit.zip
/
newsgroups
/
misc.20020314-20021006
/
000012_fdc@columbia.edu_Wed Apr 3 17:20:49 EST 2002.msg
< prev
next >
Wrap
Text File
|
2020-01-01
|
2KB
|
44 lines
Article: 13281 of comp.protocols.kermit.misc
Path: newsmaster.cc.columbia.edu!news.columbia.edu!news-not-for-mail
From: fdc@columbia.edu (Frank da Cruz)
Newsgroups: comp.protocols.kermit.misc
Subject: Re: Can IKSD be run under a non-root userid?
Date: 3 Apr 2002 17:20:42 -0500
Organization: Columbia University
Lines: 27
Message-ID: <a8fv7q$mo4$1@watsol.cc.columbia.edu>
References: <Pine.WNT.4.43.0204031247310.169-100000@refmntpc050.afsc.noaa.gov> <a8fu3g$fig$1@newsmaster.cc.columbia.edu>
NNTP-Posting-Host: watsol.cc.columbia.edu
X-Trace: newsmaster.cc.columbia.edu 1017872443 16635 128.59.39.139 (3 Apr 2002 22:20:43 GMT)
X-Complaints-To: postmaster@columbia.edu
NNTP-Posting-Date: 3 Apr 2002 22:20:43 GMT
Xref: newsmaster.cc.columbia.edu comp.protocols.kermit.misc:13281
In article <a8fu3g$fig$1@newsmaster.cc.columbia.edu>,
Jeffrey Altman <jaltman@watsun.cc.columbia.edu> wrote:
: In article <Pine.WNT.4.43.0204031247310.169-100000@refmntpc050.afsc.noaa.gov>,
: <bob.hewitt@noaa.gov> wrote:
: : I would like to have IKSD running under a regular userid, started from
: : xinetd [running under the same userid.] I already have started IKSD from
: : xinetd. But, I have run into difficulty with IKSD authorization [shadow
: : passwords.] Somehow, I would need to deal with the 'shadow' file. Is this
: : whole thing a major effort?
:
: IKSD must be run as root in order for it to change uid to the logged
: in user.
:
There are lots of ways for a nonroot user to use C-Kermit to give remote
access ("set host * nnnn" or any kind of script based on it, similar to
Kermit 95 hostmode), but then incoming users are "you". If you want them
to authenticate to some other user ID, obviously the process doing the
authenticating (in this case K95) must be root.
What's the actual problem? That you can't be root or start IKSD under
regular inetd? Or that you can do that but you can't get authentication
to work?
In the former case, there is probably a better approach to the problem
than IKSD.
- Frank