Exporting Unix/Linux accounts to postnuke users :: Zikula Community

Print topic

Start ::
PostNuke 0.7 Support ::
Core Modules & Blocks ::
Exporting Unix/Linux accounts to postnuke users

Moderated by:
Support

Exporting Unix/Linux accounts to postnuke users

Posted: 11.07.2003, 15:25

rank:

Freshman

registered:

July 2003

Status:

offline

last visit:

17.07.03

Posts:

2

hi everybody, I am an accustomed user of PostNuke-france.com, and i wanna know if someone have or knows where i can find a script or module, wich allows exporting user accounts from Unix/Linux "/etc/passwrd" and "/etc/shadow" to PostNuke database users.

or how to do the authentification with a linux server to access the site

great site,

:)
- notify mod
Posted: 11.07.2003, 18:47

rank:

Professional

registered:

April 2002

Status:

offline

last visit:

24.11.08

Posts:

716

What about the LDAP login module? Use LDAP as a user DB for both Linux and PostNuke...
- notify mod
Posted: 14.07.2003, 16:08

rank:

Freshman

registered:

July 2003

Status:

offline

last visit:

17.07.03

Posts:

2

it seems to be cool.
where can i download the LDAP Login?
- notify mod
Posted: 14.07.2003, 17:31

rank:

Steering Committee

registered:

December 2002

Status:

offline

last visit:

02.12.08

Posts:

13418

have a search on mods.postnuke.com for it, there should be a download link there

--
Regards,
Simon

itbegins.co.uk - Zikula Consulting

Please read the Support Guide
- notify mod
Posted: 14.07.2003, 19:00

rank:

Freshman

registered:

June 2003

Status:

offline

last visit:

31.07.03

Posts:

9

It will be gorgeous to know if it is possible to encrypt password in PHP with the same algorithm as Linux, then we'll be able to write a new module to do wah tbobito wanted. But I'm not a Linux master... Does someone know if it's possible ?
- notify mod
Posted: 14.07.2003, 19:16

rank:

Moderator

registered:

March 2002

Status:

offline

last visit:

26.08.08

Posts:

7720

dodik,

I'm not talking with any great knowledge here but should you even need to encrypt the password. Would it not be better to work at the PAM level? This way if PN authenticated to the PAM layer a large number of authentication methodlogies would become available to PN via a single module.

-Mark
- notify mod
Posted: 14.07.2003, 19:32

rank:

Freshman

registered:

June 2003

Status:

offline

last visit:

31.07.03

Posts:

9

markwest
dodik,

I'm not talking with any great knowledge here but should you even need to encrypt the password. Would it not be better to work at the PAM level? This way if PN authenticated to the PAM layer a large number of authentication methodlogies would become available to PN via a single module.

-Mark

I agree totally with you :wink:. But here It goes again: assuming that you have already a server running with a hundred users, if you want to create an account on your PostNuke website automatically without entering each user & password manually, we have to know how the Linux password is encrypted. I don't mean how to decrypt it, but how to encrypt a value of a text field in order to compare it to the password stored in the database (this password which has been stored using the /etc/shadow file). However, if you start with a new server, you're totally right :D . No need to use encrypted password.
- notify mod
Posted: 14.07.2003, 19:35

rank:

Moderator

registered:

March 2002

Status:

offline

last visit:

26.08.08

Posts:

7720

I was assuming that the pam layer would handle this but again I'm not speaking with any great knowledge here and thus could be completely and utterly wrong. My reason for assuming this is that with the disperate nature of the available PAM modules that the client can't possibly have to handle the relevant encrpytion for each.

-Mark
- notify mod
Posted: 14.07.2003, 20:15

rank:

Freshman

registered:

June 2003

Status:

offline

last visit:

31.07.03

Posts:

9

I already apologize for what I'm gonna say but I don't really understand what you mean... Sorry about that. Could you be more clear please ?
- notify mod
Posted: 14.07.2003, 20:30

rank:

Moderator

registered:

March 2002

Status:

offline

last visit:

26.08.08

Posts:

7720

I'll try but as i've said i'm making some assumptions myself.

Each PAM module authenticates to a radically different backend e.g. mysql, shadow files, LDAP, imap etc. The requirements of each backend in terms of the encryption of the password will vary radically e.g. MD5 hashes, public & private keys etc.

So my assumption is that the client (in our case our PAM authentication module for PN) can't need to handle each of these encryption methodlogies for each autentication method thus the PAM layer should handle the encryption required by that PAM module i.e. There must be a generic access method to the PAM layer independant of the underlying PAM module being used.

Does this make sense?

-Mark
- notify mod
Posted: 14.07.2003, 20:37

rank:

Freshman

registered:

June 2003

Status:

offline

last visit:

31.07.03

Posts:

9

OK and thanks. This is more clear from now on. But the problem of bobito is still not fixed...
- notify mod
Posted: 14.07.2003, 20:47

rank:

Moderator

registered:

March 2002

Status:

offline

last visit:

26.08.08

Posts:

7720

But I don't think it's the kind of thing you 'fix'. This suggests that something is not working. Where as here we have an enquiry over if something is possible or not. I certainly don't know of anything that does this now. It may, depending on the encryption algorithm, be possible to write something that would do this but this would need a fair bit of background work.

-Mark
- notify mod
Posted: 14.07.2003, 21:08

rank:

Freshman

registered:

June 2003

Status:

offline

last visit:

31.07.03

Posts:

9

Sorry for my english... I'm french... I meaned exactly what you said in your last post. We need to have a background work. Let's wait and see if someone knows in this forum how to do Bobito's workaround.
- notify mod