logo

skeud

Simple and portable utilities to deal with user accounts (su, login)git clone https://anongit.hacktivis.me/git/skeud.git/

README.md (1512B)

    

  1. # skeud: Simple and portable utilities to deal with user accounts (su, login)
  3. skeud /skød/ (Brezhoneg): shadow / reflection / ghost
  5. Status: Experimental, enough done to work but needs thorough review.
  7. ## Features
  8. - Based on `getpwnam(3)` (and `getspnam(3)` on Linux), making it compatible with systems like [tcb shadow](https://www.openwall.com/tcb/)
  10. ## Dependencies
  11. - POSIX.1-2024 environment (`/dev/tty`, make, ...)
  12. - C17 Compiler
  13. - Proper support for static executables (glibc is out)
  14. - `initgroups()` C interface in `<grp.h>` or `<unistd.h>`
  15. - (lint-only) [mandoc](https://mdocml.bsd.lv/)
  17. ## Installation
  18. - The usual ``make && make install`` is supported, along with `DESTDIR`
  20. Also depending on your security policy, you might want `suc(1)`,
  21. which was made opt-in due to it ignoring the target's shell entry
  22. when arguments are given.
  24. To still compile & install it: ``make suc && make suc-install``
  26. ## Unsupported
  27. - Broken authentication systems like PAM and [nsswitch](https://skarnet.org/software/nsss/nsswitch.html)
  28. - Remote host arguments (believed to be legacy)
  29. - `/etc/login.defs` configuration file
  30. - Checking for emails, consider using `/etc/profile` or `~/.profile` instead
  31. - Dangerous features:
  32.   - empty password field disabling authentication
  33. - `utmp` / `wtmp`: Prone to corrupting itself and can be faked
  34. - OS-specific utilities like `passwd`, `useradd`, `gpasswd`, …
  36. <!--
  37. Copyright © 2022 Haelwenn (lanodan) Monnier <contact+skeud@hacktivis.me>
  38. SPDX-License-Identifier: MPL-2.0
  39. -->