LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 10-26-2009, 03:04 PM   #1
ACiD GRiM
LQ Newbie
 
Registered: Mar 2009
Posts: 17

Rep: Reputation: 0
LDAP cache shadow passwords


I'd like to allow my laptop to be disconnected from the network and login with a user stored on LDAP. I know nscd can cache usernames and groups but not shadows, but is there a solution that will cache passwords?
 
Old 10-27-2009, 01:18 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983Reputation: 1983
No, because with ldap authentication there is no shadow entry. Something like NIS will provide the local system with a crypt string to locally validate itself against, but ldap doesn't do this. instead you have to bind against the ldap server itself, using the password directly. If you think about it, it should seem kind of screwey for a centralized server to allow any connected client to obtain a list of everyones encrypted passwords which it can then go off an do dictionary attacks against, unknown to the server, until the cows come home.

I know what you mean, something that does happen on offline windows systems, but I don't think there's anything specifically to do this. Of course, I'm wrong about that, but when aren't I? https://help.ubuntu.com/community/PamCcredsHowto, http://www.padl.com/OSS/pam_ccreds.html Looking over this module, it shows that the logic I first described still holds from what I see in the fairly scarce documentation for it.

Last edited by acid_kewpie; 10-27-2009 at 01:31 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
/etc/shadow - passwords not hashing erics_acvw Linux - Security 1 10-31-2006 03:08 AM
shadow passwords help? SciYro Linux - Security 2 03-03-2004 05:11 AM
shadow passwords dtheorem Linux From Scratch 2 10-18-2003 11:40 PM
shadow passwords and mdf njnear Linux - Security 5 08-06-2003 03:41 PM
Am I using shadow passwords? keirobyn Linux - Newbie 1 01-28-2002 12:55 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 09:50 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration