This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. Send mail to mime@docserver.cac.washington.edu for more info. --8323328-2072998434-1028322152=:30355 Content-Type: TEXT/PLAIN; charset=US-ASCII There is a bug in mod_auth_pam. The new group checking code iterates over the results of group->gr_mem comparing the results to ap_getword_conf(). The thing is that the words in the apache config are the group names that are allowed, the contents of group->gr_mem are the users that belong to the group. The proper behavior is to iterate over the contents of group->gr_mem and compare it to the authenticated username. This fixes the bug that I reported earlier on not being able to use supplementary groups. A patch for the latest version (1.1) is attached. Will Holcomb --8323328-2072998434-1028322152=:30355 Content-Type: TEXT/PLAIN; charset=US-ASCII; name="mod_auth_pam-1.1-1.11.diff" Content-Transfer-Encoding: BASE64 Content-ID: <Pine.LNX.4.44.0208021602320.30355@odin.himinbi.org> Content-Description: Content-Disposition: attachment; filename="mod_auth_pam-1.1-1.11.diff" NDQ0YTQ0NQ0KPiAJY2hhciogbmFtZSA9IHItPmNvbm5lY3Rpb24tPnVzZXI7 DQo0NTBjNDUxDQo8IAkJaWYgKChwd2VudCA9IGdldHB3bmFtIChyLT5jb25u ZWN0aW9uLT51c2VyKSkgJiYgKGdyZW50ID0gZ2V0Z3JnaWQgKHB3ZW50LT5w d19naWQpKSkNCi0tLQ0KPiAJCWlmICgocHdlbnQgPSBnZXRwd25hbSAobmFt ZSkpICYmIChncmVudCA9IGdldGdyZ2lkIChwd2VudC0+cHdfZ2lkKSkpDQo0 NjFjNDYyDQo8IAkJaWYgKChncmVudCA9IGdldGdybmFtICh3b3JkKSkgJiYg Z3JlbnQtPmdyX21lbSkNCi0tLQ0KPiAJCWlmICgoZ3JlbnQgPSBnZXRncm5h bSAod29yZCkpICYmIChtZW1iZXJzID0gZ3JlbnQtPmdyX21lbSkgIT0gTlVM TCkNCjQ2Myw0NjRkNDYzDQo8IAkJCW1lbWJlcnMgPSBncmVudC0+Z3JfbWVt Ow0KPCANCjQ2N2M0NjYNCjwgCQkJCWlmICghc3RyY21wICgqbWVtYmVycywg d29yZCkpDQotLS0NCj4gCQkJCWlmICghc3RyY21wICgqbWVtYmVycywgbmFt ZSkpDQo= --8323328-2072998434-1028322152=:30355--
