From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <3b45cf2a4f20a838b6c03a7c6f2cafd6@plan9.bell-labs.com> From: David Presotto To: 9fans@cse.psu.edu Subject: Re: [9fans] secstore passwords question In-Reply-To: MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="upas-hkdygnfagbvwpkbujbuehqdodt" Date: Sat, 26 Jul 2003 22:13:46 -0400 Topicbox-Message-UUID: 0564d41a-eacc-11e9-9e20-41e7f4b1d025 This is a multi-part message in MIME format. --upas-hkdygnfagbvwpkbujbuehqdodt Content-Disposition: inline Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit depends on how many machines you have. If secstored is running on a different machine, then factotum will call it up when it starts and download the keys. Otherwise, you can start secstore some time later and redirect its output to the factotum/ctl. --upas-hkdygnfagbvwpkbujbuehqdodt Content-Type: message/rfc822 Content-Disposition: inline Received: from plan9.cs.bell-labs.com ([135.104.9.2]) by plan9; Sat Jul 26 21:54:26 EDT 2003 Received: from mail.cse.psu.edu ([130.203.4.6]) by plan9; Sat Jul 26 21:54:24 EDT 2003 Received: by mail.cse.psu.edu (CSE Mail Server, from userid 60001) id 0DF2419C5F; Sat, 26 Jul 2003 21:54:21 -0400 (EDT) Received: from psuvax1.cse.psu.edu (psuvax1.cse.psu.edu [130.203.23.6]) by mail.cse.psu.edu (CSE Mail Server) with ESMTP id 016B019BA4; Sat, 26 Jul 2003 21:54:16 -0400 (EDT) X-Original-To: 9fans@cse.psu.edu Delivered-To: 9fans@cse.psu.edu Received: by mail.cse.psu.edu (CSE Mail Server, from userid 60001) id 92FB919C43; Sat, 26 Jul 2003 21:53:38 -0400 (EDT) Received: from fbsd.cpsc.ucalgary.ca (fbsd.cpsc.ucalgary.ca [136.159.7.68]) by mail.cse.psu.edu (CSE Mail Server) with ESMTP id B142319B9D for <9fans@cse.psu.edu>; Sat, 26 Jul 2003 21:53:37 -0400 (EDT) Received: from fbsd.cpsc.ucalgary.ca (localhost.localdomain [127.0.0.1]) by fbsd.cpsc.ucalgary.ca (8.12.8/8.12.8) with ESMTP id h6R1rQeH019412 for <9fans@cse.psu.edu>; Sat, 26 Jul 2003 19:53:26 -0600 Received: from localhost (mirtchov@localhost) by fbsd.cpsc.ucalgary.ca (8.12.8/8.12.8/Submit) with ESMTP id h6R1rQju019408 for <9fans@cse.psu.edu>; Sat, 26 Jul 2003 19:53:26 -0600 X-Authentication-Warning: fbsd.cpsc.ucalgary.ca: mirtchov owned process doing -bs From: andrey mirtchovski To: 9fans@cse.psu.edu Subject: Re: [9fans] secstore passwords question In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: 9fans-admin@cse.psu.edu Errors-To: 9fans-admin@cse.psu.edu X-BeenThere: 9fans@cse.psu.edu X-Mailman-Version: 2.0.11 Precedence: bulk Reply-To: 9fans@cse.psu.edu List-Id: Fans of the OS Plan 9 from Bell Labs <9fans.cse.psu.edu> List-Archive: Date: Sat, 26 Jul 2003 19:53:26 -0600 (MDT) X-Spam-Status: No, hits=-1.4 required=5.0 tests=EMAIL_ATTRIBUTION,IN_REP_TO,USER_AGENT_PINE,X_AUTH_WARNING version=2.55 X-Spam-Level: X-Spam-Checker-Version: SpamAssassin 2.55 (1.174.2.19-2003-05-19-exp) Another question, of the dumb variety: to enable ssh logins to the system I need to do an: aux/rsagen -t 'service=sshnet' > /mnt/factotum/ctl however the factotum is compiled in the kernel of the auth server and is started from the boot script in /sys/lib/sysconfig/authsrv/... at this point there's not secstore running so there's no way to tell factotum what the rsagen key for the machine is, so we end up with an unusable ssh server. should secstore be compiled in the kernel and started right before factotum during the boot sequence (taking the secstore key from nvram)? or am I missing something embarrassingly trivial again? andrey On Sat, 26 Jul 2003, David Presotto wrote: > auth/secstore -c changes a password. man secstore --upas-hkdygnfagbvwpkbujbuehqdodt--