libchk.so
来源:互联网 发布:大数据服务平台 编辑:程序博客网 时间:2024/06/05 04:19
chkpwd.c:
#include <config.h>
#include <sys/types.h>
#include <pwd.h>
#include "system.h"
#include <shadow.h>
#define DEFAULT_SHELL "/bin/sh"
char *crypt ();
static bool correct_password (char *unencrypted, const struct passwd *pw)
{
char *encrypted, *correct;
#if HAVE_GETSPNAM && HAVE_STRUCT_SPWD_SP_PWDP
struct spwd *sp = getspnam (pw->pw_name);
endspent ();
if (sp) correct = sp->sp_pwdp;
else
#endif
correct = pw->pw_passwd;
if (!correct || correct[0] == '\0') return true;
if(!unencrypted) return false;
encrypted = crypt (unencrypted, correct);
memset (unencrypted, 0, strlen (unencrypted));
return STREQ (encrypted, correct);
}
static struct passwd *getpws (char *username)
{
struct passwd *pw;
pw = getpwnam (username);
if (! (pw && pw->pw_name && pw->pw_name[0] && pw->pw_dir && pw->pw_dir[0] && pw->pw_passwd)) return NULL;
endpwent ();
return pw;
}
bool chkpwd (char *username, char *password)
{
struct passwd *pw;
struct passwd pw_copy;
pw = getpws(username);
if(!pw) return false;
pw_copy = *pw;
pw = &pw_copy;
pw->pw_name = xstrdup (pw->pw_name);
pw->pw_passwd = xstrdup (pw->pw_passwd);
pw->pw_dir = xstrdup (pw->pw_dir);
pw->pw_shell = xstrdup (pw->pw_shell && pw->pw_shell[0] ? pw->pw_shell : DEFAULT_SHELL);
return correct_password (password, pw);
}
__uid_t userid (char *username)
{
struct passwd *pw;
pw = getpws(username);
if(!pw) return -1;
return pw->pw_uid;
}
export.map:
{
global:chkpwd; userid;
local:*;
};
编译命令:
# gcc -c -Iinclude -o chkpwd.o chkpwd.c
# gcc -shared -fPIC -Wl,--version-script=export.map -Llib -o libchk.so chkpwd.o -lcoreutils -lcrypt
编译成libchk.so,其中函数
bool chkpwd (char *username, char *password)
可用于验证Linux用户的密码是否正确。
将libchk.so拷至/usr/lib/目录下,以便调用它的程序能找到。
修改/usr/lib/libchk.so的安全上下文,否则将遭SELinux拦截:
# chcon -t shlib_t /usr/lib/libchk.so
- libchk.so
- so
- so...
- so
- So.
- so
- so
- So So So……
- SO FAR SO GOOD
- So wrong, so painful
- so well so good
- just so so
- just so so
- 恩 jsut so so
- so beautiful so white
- JUST SO SO
- So Good
- SO SENSITIVE
- SQL Server数据表管理
- 在黑窗口中显示所有的进程
- 程序员的思想枷锁
- Android中级教程之Log图文详解(Log.v,Log.d,Log.i,Log.w,Log.e)
- ioremap和ioport_map
- libchk.so
- Sql Server随机数
- YII Framework学习教程-YII的C-控制器-2011-11-14
- [转]让国外邮件服务商不再拒收你的邮件,The IP you're using to send mail is not authorized
- .net 3.5 framework中的Lambda表达式
- crypt函数
- T-SQL打开一项外围配置
- 关于数据库的规范化及反规范技术研究(软考中的第二道题,反规范化技术)
- 重编译Linux命令源代码