a) I am looking at getting spwd integrated from AIX b) only the parameter sp_pwdp is my concern - as AIX really does not want to reveal the encrypted password. Rather, AIX will say '!' (meaning there is, or should be a shadow password, or '*' - no user password). Would this horribly break things if only '!' was returned, rather than the shadow password? It does not look terribly hard - but how do you deal with defaults such as 0 or -1 for the numeric values? Regards, Michael
On 2018-08-01 13:58, Michael wrote:
a) I am looking at getting spwd integrated from AIX
b) only the parameter sp_pwdp is my concern - as AIX really does not want to reveal the encrypted password. Rather, AIX will say '!' (meaning there is, or should be a shadow password, or '*' - no user password). Would this horribly break things if only '!' was returned, rather than the shadow password?
It does not look terribly hard - but how do you deal with defaults such as 0 or -1 for the numeric values?
Please note that I'm planning to deprecate and remove the spwd module. The module has several limitation. Most importantly it bypasses the PAM stack. Therefore it's not compatible with password policies or other password storages like LDAP. Christian
Sounds like i can skip this then. Thx. Sent from my iPhone
On 1 Aug 2018, at 17:52, Christian Heimes <christian@python.org> wrote:
On 2018-08-01 13:58, Michael wrote: a) I am looking at getting spwd integrated from AIX
b) only the parameter sp_pwdp is my concern - as AIX really does not want to reveal the encrypted password. Rather, AIX will say '!' (meaning there is, or should be a shadow password, or '*' - no user password). Would this horribly break things if only '!' was returned, rather than the shadow password?
It does not look terribly hard - but how do you deal with defaults such as 0 or -1 for the numeric values?
Please note that I'm planning to deprecate and remove the spwd module. The module has several limitation. Most importantly it bypasses the PAM stack. Therefore it's not compatible with password policies or other password storages like LDAP.
Christian
_______________________________________________ Python-Dev mailing list Python-Dev@python.org https://mail.python.org/mailman/listinfo/python-dev Unsubscribe: https://mail.python.org/mailman/options/python-dev/aixtools%40felt.demon.nl
participants (3)
-
Christian Heimes -
Michael -
Michael Felt (aixtools)