Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

pwauth(8) [centos man page]

PWAUTH(8)						      System Manager's Manual							 PWAUTH(8)

pwauth - authenticator for mod_authnz_external and the Apache HTTP Daemon SYNOPSIS
Pwauth is an authenticator designed to be used with mod_auth_external or mod_authnz_external and the Apache HTTP Daemon to support reason- ably secure web authentication out of the system password database on most versions of Unix. Particulary - secure authentication against PAM. The simplest test pwauth is to start a root shell and just run pwauth. It will attempt to read the login and password from standard input, so type a login name, hit return, then type a password, and hit return (the password will echo on your screen). The check the status code that was returned (in csh: "echo $status" in sh: "echo $?"). If the login/password were correct you should get a zero status code. If not, you will get some other value. See below the list of status codes to find the meaning of the various values returned. Any values 50 or greater indicate a configuration error. STATUS CODES
0 STATUS_OK Login OK. 1 STATUS_UNKNOWN Nonexistant login or (for some configurations) incorrect password. 2 STATUS_INVALID Incorrect password (for some configurations). 3 STATUS_BLOCKED Uid number is below MIN_UNIX_UID value configured in config.h. 4 STATUS_EXPIRED Login ID has expired. 5 STATUS_PW_EXPIRED Login's password has expired. 6 SSTATUS_NOLOGIN Logins to system have been turned off (usually by /etc/nologin file). 7 STATUS_MANYFAILES Limit on number of bad logins exceeded. 50 STATUS_INT_USER pwauth was invoked by a uid not on the SERVER_UIDS list. If you get this error code, you probably have SERVER_UIDS set incorrectly in pwauth's config.h file. 51 STATUS_INT_ARGS pwauth was not given a login & password to check. The means the passing of data from mod_auth_external to pwauth is messed up. Most likely one is trying to pass data via environment variables, while the other is trying to pass data via a pipe. 52 STATUS_INT_ERR one of several rare and unlikely internal errors occurred. You'll have to read the source code to figure these out. 53 STATUS_INT_NOROOT pwauth was not able to read the password database. Usually this means it is not running as root. (PAM and login.conf configurations will return 1 in this case.) AUTHOR
pwauth was written by Jan Wolter <>. This manual page was written by Hai Zaar <>, for the Debian project (but may be used by others). 2009-05-02 PWAUTH(8)

Check Out this Related Man Page

LOGIN(1)						      General Commands Manual							  LOGIN(1)

login - sign on SYNOPSIS
login [ -p ] [ username ] DESCRIPTION
The login command is used when a user initially signs on, or it may be used at any time to change from one user to another. The latter case is the one summarized above and described here. See "How to Get Started" for how to dial up initially. If login is invoked without an argument, it asks for a user name, and, if appropriate, a password. Echoing is turned off (if possible) during the typing of the password, so it will not appear on the written record of the session. After a successful login, accounting files are updated and the user is informed of the existence of mail. The message of the day is printed, as is the time of his last login. Both are suppressed if he has a ".hushlogin" file in his home directory; this is mostly used to make life easier for non-human users, such as uucp. Login initializes the user and group IDs and the working directory, then executes a command interpreter (usually csh(1)) according to spec- ifications found in a password file. Argument 0 of the command interpreter is the name of the command interpreter with a leading dash ("-"). Login also modifies the environment environ(7) with information specifying home directory, command interpreter, terminal type (if avail- able) and user name. The `-p' argument causes the remainder of the environment to be preserved, otherwise any previous environment is dis- carded. If the file /etc/nologin exists, login prints its contents on the user's terminal and exits. This is used by shutdown(8) to stop users log- ging in when the system is about to go down. Login is recognized by sh(1) and csh(1) and executed directly (without forking). FILES
/var/run/utmp accounting /usr/adm/wtmp accounting /usr/spool/mail/* mail /etc/motd message-of-the-day /etc/passwd password file /etc/nologin stops logins .hushlogin makes login quieter SEE ALSO
init(8), getty(8), mail(1), passwd(1), passwd(5), environ(7), shutdown(8), rlogin(1c) DIAGNOSTICS
"Login incorrect," if the name or the password is bad. "No Shell", "cannot open password file", "no directory": consult a programming counselor. BUGS
An undocumented option, -r is used by the remote login server, rlogind(8C) to force login to enter into an initial connection protocol. -h is used by telnetd(8C) and other servers to list the host from which the connection was received. 4th Berkeley Distribution November 27, 1996 LOGIN(1)
Man Page

Featured Tech Videos