I don't want the unencrypted password, I can write C (or perl) code to
decrypt an encrypted request.
My problem is to retrieve a password with only an username. I can maintain
two password files but I don't want to have on my server a file where
passwords are stored in plaintext.
I'm paranoid ... Example, my file "/etc/passwd" is like this (C2) :
root:##root:0:1:Operator:/:/bin/csh
nobody:##nobody:65534:65534::/:
daemon:##daemon:1:1::/:
sys:##sys:2:2::/:/bin/csh
bin:##bin:3:3::/bin:
audit:##audit:9:9::/etc/security/audit:/bin/csh
AUpwdauthd:##AUpwdauthd:10:10:AUpwdauthd pseudo user::/bin/false
AUyppasswdd:##AUyppasswdd:11:10:AUyppasswdd pseudo user::/bin/false
....
> If this is completely unacceptable, or I have missed something, please let
> me know. I'll consider making the Authorization: line available to the
> script, but I am objected to it.
I'll try another solution ...
Thanks,
Guy Decoux