Re: problem with PAM and LDAP

To: <debian-devel@lists.debian.org>
Subject: Re: problem with PAM and LDAP
From: Steve Langasek <vorlon@netexpress.net>
Date: Thu, 23 Aug 2001 16:24:28 -0500 (CDT)
Message-id: <[🔎] Pine.LNX.4.30.0108231617490.9962-100000@tennyson.netexpress.net>
In-reply-to: <[🔎] 20010823123741.B17041@undergrid.net>

On Thu, 23 Aug 2001, Jeremy T. Bouse wrote:

> 	I believe that should be "try_first_pass" not "use_first_pass"...

Depends on what you actually want.  'try_first_pass' means that if the
password pam_unix receives from pam_ldap is wrong, pam_unix is allowed to
prompt for another one.  Sometimes you want this, sometimes you don't.

Steve Langasek
postmodern programmer

> On Thu, Aug 23, 2001 at 09:24:51PM +0200, Roland Bauerschmidt wrote:
> > Russell Coker wrote:
> > > Also as a further complication, I want to have pam_unix.so listed before
> > > pam_ldap.so so that if there is a network problem causing LDAP timeouts I can
> > > still login as root.
> >
> > I use
> > pam_ldap.so	sufficient
> > pam_unix.so	required use_first_pass
> >
> > which works fine even if the ldap server is down.
> >
>
>
>

Reply to:

References:
- Re: problem with PAM and LDAP
  - From: "Jeremy T. Bouse" <Jeremy.Bouse@UnderGrid.net>

Prev by Date: Bug#109611: X11-apps only display squares instead of characters
Next by Date: Re: Two questions about task-harden.
Previous by thread: Re: problem with PAM and LDAP
Next by thread: Re: problem with PAM and LDAP
Index(es):
- Date
- Thread