On Sun, Apr 22, 2012 at 11:45:07PM -0000, linux-pam wrote:
#7: [PATCH] Allow changing of passwords in containers lacking
CAP_AUDIT_WRITE
----------------------+------------------------------
Reporter: lennart | Owner: pam-developers@…
Type: defect | Status: new
Priority: major | Component: modules
Version: | Keywords:
Blocked By: | Blocking:
----------------------+------------------------------
Currently, changing passwords fails in containers lacking CAP_AUDIT_WRITE
(i.e. most containers). The patch that is attached fixes this. See patch
comment for a longer explanation of what it does and why.
Seems like it would be better to change the uid test to a CAP_AUDIT_WRITE test.
-Kees
--
Kees Cook @outflux.net