On Sun, 2002-08-11 at 15:06, James West wrote: > > I'm having some trouble with getting certain services thar don't run as root, > using pam. > > Namely postgresql runs as user postgres, but I was expirimenting with various > versions of pam_unix and had no luck getting it to auth, until I messed with > permissions of /etc/shadow. > > Now, I'm sure this is a really old and obvious problem. (and if the truth be > known I can probably work without it) > > But, is there a way around it? We usually make a new group, shadowreaders, and: chgrp shadowreaders /etc/shadow chmod g+r /etc/shadow and add the users to that group.
