Re: LDAP authentication with PAM

To: debian-devel@lists.debian.org
Subject: Re: LDAP authentication with PAM
From: Brian May <bam@debian.org>
Date: 15 Apr 2001 17:49:54 +1000
Message-id: <[🔎] 84n19ifvq5.fsf@snoopy.apana.org.au>
In-reply-to: <[🔎] 84bspzgij3.fsf@snoopy.apana.org.au>
References: <[🔎] 84n19jhma8.fsf@snoopy.apana.org.au> <[🔎] Pine.LNX.4.30.0104141031430.5563-100000@tennyson.netexpress.net> <[🔎] 84bspzgij3.fsf@snoopy.apana.org.au>

>>>>> "Brian" == Brian May <bam@debian.org> writes:

    Brian> 1. So if pam_ldap ever fails it will drop back to pam_unix.

2nd thoughts: putting pam_unix last was probably a bad idea. It means
that if the user's LDAP account has expired (for instance), they see a
confusing error "no account information available" from pam_unix,
instead of the sane "account has expired" error from pam_ldap.
-- 
Brian May <bam@debian.org>

Reply to:

References:
- Re: LDAP authentication with PAM
  - From: Brian May <bam@debian.org>
- Re: LDAP authentication with PAM
  - From: Steve Langasek <vorlon@netexpress.net>
- Re: LDAP authentication with PAM
  - From: Brian May <bam@debian.org>

Prev by Date: Re: Bugs against Debian CD's
Next by Date: Re: ITP: metis -- Software package for partitioning unstructured graphs
Previous by thread: Re: LDAP authentication with PAM
Next by thread: Re: LDAP authentication with PAM
Index(es):
- Date
- Thread