[Cabal] A jabber server question.

Luke Schierer lschiere at users.sf.net
Mon Nov 13 23:27:04 EST 2006

On Thu, Nov 09, 2006 at 01:51:38AM -0500, Etan Reisner wrote:
> So after much head-scratching and hair-pulling I have figured out what 
> was keeping the jabber server from authenticating correctly, with 
> the aid of some spot-on help from Richard.
> The problem at the moment (there were some others but they have been 
> resolved) is that ejabberd runs as the ejabberd user and the binaries 
> are not setuid root and as such ejabberd can't read the shadow password 
> file. There seems to be two solutions to this problem: a helper program 
> which will setuid/seteuid itself to the correct user or adding the 
> ejabberd user to the shadow group (or creating a shadow-foo group, 
> adding ejabberd to that group, and then chgrp:ing /etc/shadow to that 
> group).
> I'm leaning towards the group/chgrp solution because it's easier but I 
> figured I'd ask and see what other people thought.
>  	-Etan
> P.S. For the record the mod_auth_pam docs suggest this group tweaking to 
> get it working (http://pam.sourceforge.net/mod_auth_pam/shadow.html). In 
> case that matters to anyone.

I added it to the shaddow group, which already existed, but had no
members.  I figure the lack of reply equals lack of objection.


More information about the Cabal mailing list