courierpasswd-1.1.3.txz


Advertisement

Description

courierpasswd - User authentication and password changing utility

Property Value
Distribution FreeBSD 11
Repository FreeBSD Ports Quarterly i386
Package filename courierpasswd-1.1.3.txz
Package name courierpasswd
Package version 1.1.3
Package release -
Package architecture i386
Package type txz
Category mail security
Homepage http://www.arda.homeunix.net/downloads/
License GPLv2+
Maintainer ports@FreeBSD.org
Download size 20.45 KB
Installed size 46.47 KB
courierpasswd is an authentication and password changing utility
that uses the courier-authlib authentication library to find user credentials.
Its interface follows that of Daniel J. Bernstein's checkpassword program.
WWW: http://www.arda.homeunix.net/downloads/
Options:
- DOCS: on
#########################################################################
NOTES FOR RUNNING COURIERPASSWD
In order to use courierpasswd, it must be able to access the
authdaemon domain socket, named 'socket'. When courierpasswd runs as
root, this presents no problem. However, if you need to run courierpasswd
as a non-root user, you have three options, all of which require some
manual work.
Option 1: Add the user courierpasswd will run as the group that owns
the authdaemon socket directory in /etc/group. More than one user
can be added to the group vector in this way. This arrangement works
well if courierpasswd will be run by only a small number of users.
If the authdaemon socket directory is owned by courier:courier and you
run courierpasswd as user vmail, your /etc/group file will have a line
something like this:
courier:x:465:vmail
Option 2: Some programs, such as tcpserver, allow you to separately set
the uid and gid of programs they call but don't honour the group vector
found in /etc/group. If you invoke courierpasswd from such a program,
set the gid to the group ownership of the authdaemon socket directory.
For tcpserver, you could do something like this:
#!/bin/sh
QMAILUID=`/usr/bin/id -u qmaild`
COURIERGID=`/usr/bin/id -g courier`
exec /usr/local/bin/tcpserver -u "$QMAILUID" -g "$COURIERGID" \
0 smtp /var/qmail/bin/qmail-smtpd /usr/local/sbin/courierpasswd -- \
/usr/bin/true 2>&1
Option 3: Change the permissions on courierpasswd to set gid to the
group ownership of the socket directory. Again, if the socket directory
is owned by courier:courier, change the ownership and permissions
of courierpasswd like so:
chgrp courier courierpasswd
chmod g+s courierpasswd
Be aware that courierpasswd does not provide any max-failed-retry
functionality so it is possible for local users to perform dictionary
attacks against account passwords if courierpasswd is set up this way.
The location of the authdaemon domain socket is listed in the
authdaemonrc configuration file as the parameter authdaemonvar.
#########################################################################
===>   NOTICE:
The courierpasswd port currently does not have a maintainer. As a result, it is
more likely to have unresolved issues, not be up-to-date, or even be removed in
the future. To volunteer to maintain this port, please create an issue at:
https://bugs.freebsd.org/bugzilla
More information about port maintainership is available at:
https://www.freebsd.org/doc/en/articles/contributing/ports-contributing.html#maintain-port

Alternatives

Package Version Architecture Repository
courierpasswd-1.1.3.txz 1.1.3 amd64 FreeBSD Ports Quarterly
courierpasswd-1.1.3.txz 1.1.3 i386 FreeBSD Ports Latest
courierpasswd-1.1.3.txz 1.1.3 amd64 FreeBSD Ports Latest
courierpasswd - - -

Requires

Name Value
courier-authlib-base = 0.69.0
libcourierauth.so -

Download

Type URL
Mirror pkg.freebsd.org
Binary Package courierpasswd-1.1.3.txz
Source Package security/courierpasswd

Install Howto

Install courierpasswd txz package:

# pkg install courierpasswd

See Also

Package Description
courieruserinfo-1.1.2.txz User account information retrieval utility
coursier-1.1.0.m12.txz Pure Scala Artifact Fetching
covtool-2.1_10.txz C++ test coverage analyzer
cowpatty-4.8.txz Brute-force dictionary attack against WPA-PSK
cowrie-1.9.7.txz Cowrie SSH/Telnet honeypot
cowsay-3.04_1.txz Configurable talking characters in ASCII art
coyim-0.3.11_3.txz Safe and secure by default chat client
cp2fwb-0.6_1.txz Checkpoint FW1 to Firewall Builder ruleset converter
cp2k-data-6.1.0.txz Data for cp2k quantum chemistry package
cpan-upload-2.2_2.txz Script for uploading distributions to CPAN
cpan-upload-http-2.4_1.txz Perl script to upload one or more files to CPAN, using PAUSE
cparser-0.9.14.txz C99 compiler using libFIRM as backend
cpdup-1.20.txz Comprehensive filesystem mirroring and backup program
cpige-1.5_1.txz Icecast/Shoutcast stream ripper
cpipe-3.0.2.txz Benchmarking tool for pipes
Advertisement
Advertisement