gpg is a bad example; it's much more paranoid about the (E)UID and (E)GID it runs under. I don't think sudo will go quite far enough. Check the command you're trying to run manually; run it as root, as a "full" regular user, and as a restricted user like nobody. You'll probably have to do some additional (E)UID/(E)GID tweaking to get your module running as the correct UID/GID for what you want to accomplish.
-kgd****************
FILE *fp
fp = popen("sudo gpg -ear....", "r");
thanks for the reply...but my only problem is adding the 'sudo' in popen.
if i run it without sudo, there's no problem...
my main concern is how the PAM module will accept that sudo.
the gpg
--
ronald de la cruz
_______________________________________________ Pam-list mailing list Pam-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/pam-list
