Re: severe deficiencies in our PAM setup

To: debian-devel@lists.debian.org
Subject: Re: severe deficiencies in our PAM setup
From: Martin Keegan <mk270@cam.ac.uk>
Date: Mon, 25 Sep 2000 00:04:59 +0100
Message-id: <[🔎] E13dKpP-0001Sa-00@localhost>
In-reply-to: <[🔎] 20000924121650.A8135@corbettschool.org>
References: <[🔎] 87pulutxal.fsf@HSE-MTL-ppp62067.qc.sympatico.ca> <[🔎] 20000924150033.A6665@cistron.nl> <[🔎] 20000924121650.A8135@corbettschool.org>

In debian-devel, you wrote:

>  True, but there is also no concept of a "standard" service.  Things
>required for some things(pam_securetty) make absolutly no sense for say,
>imap or samba.  And I'm a little leary about something posing as a, say,
>kbdrate service being able to change passwords.  

pam_unix.so does this for you IF you can use things supported by libc's
NSS as your backends. What's wanted is a pam_standard.so which knows
what the standard policy for the system is, which can be augmented by
the bits you need for securettys etc.

Mk

Reply to:

References:
- severe deficiencies in our PAM setup
  - From: Greg Stark <gsstark@mit.edu>
- Re: severe deficiencies in our PAM setup
  - From: Wichert Akkerman <wichert@cistron.nl>
- Re: severe deficiencies in our PAM setup
  - From: Nicolas Lopez <nick@corbettschool.org>

Prev by Date: Re: Debian in Yugoslavia
Next by Date: Re: possible problem with dpkg-genchanges
Previous by thread: Re: severe deficiencies in our PAM setup
Next by thread: Re: severe deficiencies in our PAM setup
Index(es):
- Date
- Thread