> I don't recall the apache process crashing -- but some > investigation revealed that pam_pwdb.so wouldn't do the > authentication on a system with shadow passwords unless > it was called with root privs. Apache doesn't do this. > (as opposed to login/imapd/pop3d/ftpd/etc...). > > Can anybody back me up on this? Confirmed. The process needs root privs to read /etc/shadow. It should however not crash, but give PAM_AUTHINFO_UNAVAIL as a return code. Never looked at the Apache code, so I don't know how it will react. Igmar