1.\" $Id: kpasswdd.8,v 1.3 2001/01/11 21:36:43 assar Exp $
2.\"
3.Dd April 19, 1999
4.Dt KPASSWDD 8
5.Os HEIMDAL
6.Sh NAME
7.Nm kpasswdd
| 1.\" $Id: kpasswdd.8,v 1.3 2001/01/11 21:36:43 assar Exp $
2.\"
3.Dd April 19, 1999
4.Dt KPASSWDD 8
5.Os HEIMDAL
6.Sh NAME
7.Nm kpasswdd
|
10.Sh SYNOPSIS
11.Nm
12.Op Fl -check-library= Ns Ar library
13.Op Fl -check-function= Ns Ar function
14.Oo Fl k Ar kspec \*(Ba Xo
15.Fl -keytab= Ns Ar kspec Oc
16.Xc
17.Oo Fl r Ar realm \*(Ba Xo
18.Fl -realm= Ns Ar realm Oc
19.Xc
20.Oo Fl p Ar string \*(Ba Xo
21.Fl -port= Ns Ar string Oc
22.Xc
23.Op Fl -version
24.Op Fl -help
25.Sh DESCRIPTION
26.Nm
27serves request for password changes. It listens on UDP port 464
28(service kpasswd) and processes requests when they arrive. It changes
29the database directly and should thus only run on the master KDC.
30.Pp
31Supported options:
32.Bl -tag -width Ds
33.It Xo
34.Fl -check-library= Ns Ar library
35.Xc
36If your system has support for dynamic loading of shared libraries,
37you can use an external function to check password quality. This
38option specifies which library to load.
39.It Xo
40.Fl -check-function= Ns Ar function
41.Xc
42This is the function to call in the loaded library. The function
43should look like this:
44.Pp
45.Ft const char *
46.Fn passwd_check "krb5_context context" "krb5_principal principal" "krb5_data *password"
47.Pp
48.Fa context
49is an initialized context;
50.Fa principal
51is the one who tries to change passwords, and
52.Fa password
53is the new password. Note that the password (in
54.Fa password->data )
55is not zero terminated.
56.It Xo
57.Fl k Ar kspec Ns ,
58.Fl -keytab= Ns Ar kspec
59.Xc
60keytab to get authentication key from
61.It Xo
62.Fl r Ar realm Ns ,
63.Fl -realm= Ns Ar realm
64.Xc
65default realm
66.It Xo
67.Fl p Ar string Ns ,
68.Fl -port= Ns Ar string
69.Xc
70port to listen on (default service kpasswd - 464).
71.El
72.Sh DIAGNOSTICS
73If an error occurs, the error message is returned to the user and/or
74logged to syslog.
75.Sh BUGS
76The default password quality checks are too basic.
77.Sh SEE ALSO
78.Xr kdc 8 ,
79.Xr kpasswd 1
80.\".Sh ENVIRONMENT
81.\".Sh FILES
82.\".Sh EXAMPLES
83.\".Sh SEE ALSO
84.\".Sh STANDARDS
85.\".Sh HISTORY
86.\".Sh AUTHORS
| 9.Sh SYNOPSIS
10.Nm
11.Op Fl -check-library= Ns Ar library
12.Op Fl -check-function= Ns Ar function
13.Oo Fl k Ar kspec \*(Ba Xo
14.Fl -keytab= Ns Ar kspec Oc
15.Xc
16.Oo Fl r Ar realm \*(Ba Xo
17.Fl -realm= Ns Ar realm Oc
18.Xc
19.Oo Fl p Ar string \*(Ba Xo
20.Fl -port= Ns Ar string Oc
21.Xc
22.Op Fl -version
23.Op Fl -help
24.Sh DESCRIPTION
25.Nm
26serves request for password changes. It listens on UDP port 464
27(service kpasswd) and processes requests when they arrive. It changes
28the database directly and should thus only run on the master KDC.
29.Pp
30Supported options:
31.Bl -tag -width Ds
32.It Xo
33.Fl -check-library= Ns Ar library
34.Xc
35If your system has support for dynamic loading of shared libraries,
36you can use an external function to check password quality. This
37option specifies which library to load.
38.It Xo
39.Fl -check-function= Ns Ar function
40.Xc
41This is the function to call in the loaded library. The function
42should look like this:
43.Pp
44.Ft const char *
45.Fn passwd_check "krb5_context context" "krb5_principal principal" "krb5_data *password"
46.Pp
47.Fa context
48is an initialized context;
49.Fa principal
50is the one who tries to change passwords, and
51.Fa password
52is the new password. Note that the password (in
53.Fa password->data )
54is not zero terminated.
55.It Xo
56.Fl k Ar kspec Ns ,
57.Fl -keytab= Ns Ar kspec
58.Xc
59keytab to get authentication key from
60.It Xo
61.Fl r Ar realm Ns ,
62.Fl -realm= Ns Ar realm
63.Xc
64default realm
65.It Xo
66.Fl p Ar string Ns ,
67.Fl -port= Ns Ar string
68.Xc
69port to listen on (default service kpasswd - 464).
70.El
71.Sh DIAGNOSTICS
72If an error occurs, the error message is returned to the user and/or
73logged to syslog.
74.Sh BUGS
75The default password quality checks are too basic.
76.Sh SEE ALSO
77.Xr kdc 8 ,
78.Xr kpasswd 1
79.\".Sh ENVIRONMENT
80.\".Sh FILES
81.\".Sh EXAMPLES
82.\".Sh SEE ALSO
83.\".Sh STANDARDS
84.\".Sh HISTORY
85.\".Sh AUTHORS
|