On Sat, 16 Mar 2002, Mark Constable wrote:

I wasn't very informative about this before. I think a better answer is that all the auth modules have these things available to them and a little more, by virtue of the auth callback that is registered taking a struct authinfo*. Here is authinfo:

struct authinfo { const char *sysusername; const uid_t *sysuserid; gid_t sysgroupid; const char *homedir;

const char *address; const char *fullname; const char *maildir; const char *quota;

const char *passwd; : :

which is in addition to the variables MAILDIR, MAILDIRQUOTA and AUTHENTICATED. So far I think that the authoritative source is meant to be the authinfo structure, and that variables other than AUTHENTICATED are not supposed to be relied upon within the authentication chain. Presumably the tcpd connect-time variables can be expected to be reliable.

However I am guessing because I really don't know anything about the courier code.