[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

On PAM and authentication

I recently tried out LDAP on my machine for authentication. I used tools
available at http://www.rage.net/ldap/, and I'm pleased to say it works.
By using the NSS module, it works with all existing tools, including XDM,
etc., that I have tried, except for tin (my version is libc5 though),
and passwd, gpasswd, etc (for users authenticated via LDAP).

Presumably this implies that if we use PAM for authentication, AND have a
/lib/libnss_pam.so.1 library, not many mods will NEED to be done (although
for full PAM support mods will be necessary, AFAICT).

However, it would be very useful if the libc5 (and libc4????!!) functions could
somehow be patched through to the NSS stuff (perhaps via IPC and a daemon?)
Some things like rvplayer and older netscapes are very definitely libc5-only.

In summary: I have a feeling PAM and LDAP will work great (although LDAP was
a bit difficult to set up).

Tom Lees <tom@lpsg.demon.co.uk> <tom@debian.org>  http://www.lpsg.demon.co.uk/
PGP Key: finger tom@master.debian.org, http://www.lpsg.demon.co.uk/pgpkeys.asc.

Reply to: