diff options
| author | Michal Zidek <mzidek@redhat.com> | 2014-10-09 17:25:34 +0200 |
|---|---|---|
| committer | Jakub Hrozek <jhrozek@redhat.com> | 2014-10-22 15:44:44 +0200 |
| commit | 4e1892cdfcc5300d6632200c38ba67f2783d15f2 (patch) | |
| tree | c16bc60170a82e26f1468351947f9831948097be /src | |
| parent | b547bd685cb71bb450b0c86487767f02e66f6cea (diff) | |
| download | sssd-4e1892cdfcc5300d6632200c38ba67f2783d15f2.tar.gz sssd-4e1892cdfcc5300d6632200c38ba67f2783d15f2.tar.xz sssd-4e1892cdfcc5300d6632200c38ba67f2783d15f2.zip | |
PAM: Run pam responder as nonroot
Reviewed-by: Pavel Reichl <preichl@redhat.com>
Reviewed-by: Simo Sorce <simo@redhat.com>
Diffstat (limited to 'src')
| -rw-r--r-- | src/monitor/monitor.c | 3 | ||||
| -rw-r--r-- | src/responder/pam/pamsrv.c | 2 |
2 files changed, 3 insertions, 2 deletions
diff --git a/src/monitor/monitor.c b/src/monitor/monitor.c index 297648a60..2f622e571 100644 --- a/src/monitor/monitor.c +++ b/src/monitor/monitor.c @@ -1062,7 +1062,8 @@ static errno_t get_ping_config(struct mt_ctx *ctx, const char *path, */ static bool svc_supported_as_nonroot(const char *svc_name) { - if (strcmp(svc_name, "nss") == 0) { + if ((strcmp(svc_name, "nss") == 0) + || (strcmp(svc_name, "pam") == 0)) { return true; } return false; diff --git a/src/responder/pam/pamsrv.c b/src/responder/pam/pamsrv.c index d3cf0c770..c7e3c20b2 100644 --- a/src/responder/pam/pamsrv.c +++ b/src/responder/pam/pamsrv.c @@ -368,7 +368,7 @@ int main(int argc, const char *argv[]) return 2; } - ret = server_setup("sssd[pam]", 0, 0, 0, CONFDB_PAM_CONF_ENTRY, &main_ctx); + ret = server_setup("sssd[pam]", 0, uid, gid, CONFDB_PAM_CONF_ENTRY, &main_ctx); if (ret != EOK) return 2; ret = die_if_parent_died(); |