Add unix_chkpwd suid wrapper
svn path=/nixos/trunk/; revision=23165
This commit is contained in:
parent
cfb465c7a5
commit
f0eb823a34
@ -191,7 +191,7 @@ in
|
||||
###### implementation
|
||||
|
||||
config = {
|
||||
|
||||
|
||||
environment.systemPackages =
|
||||
# Include the PAM modules in the system path mostly for the manpages.
|
||||
[ pkgs.pam ]
|
||||
@ -205,6 +205,14 @@ in
|
||||
target = "pam.d/other";
|
||||
};
|
||||
|
||||
security.setuidOwners = [ {
|
||||
program = "unix_chkpwd";
|
||||
source = "${pkgs.pam}/sbin/unix_chkpwd.orig";
|
||||
owner = "root";
|
||||
setuid = true;
|
||||
} ];
|
||||
|
||||
|
||||
security.pam.services =
|
||||
# Most of these should be moved to specific modules.
|
||||
[ { name = "cups"; }
|
||||
@ -217,5 +225,5 @@ in
|
||||
];
|
||||
|
||||
};
|
||||
|
||||
|
||||
}
|
||||
|
@ -62,7 +62,8 @@ in
|
||||
default = "/var/setuid-wrappers";
|
||||
description = ''
|
||||
This option defines the path to the setuid wrappers. It
|
||||
should generally not be overriden.
|
||||
should generally not be overriden. Some packages in nixpkgs rely on
|
||||
wrapperDir == /var/setuid-wrappers
|
||||
'';
|
||||
};
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user