Re: upstart: please update to latest upstream version

To: debian-devel@lists.debian.org
Subject: Re: upstart: please update to latest upstream version
From: Tollef Fog Heen <tfheen@err.no>
Date: Thu, 08 Mar 2012 09:21:14 +0100
Message-id: <[🔎] 87ipif8pvp.fsf@qurzaw.varnish-software.com>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 87haxz7eaz.fsf@windlord.stanford.edu> (Russ Allbery's message of "Wed, 07 Mar 2012 23:16:36 -0800")
References: <[🔎] 20120306152356.GE15222@grep.be> <[🔎] 20120306224643.GA24308@leaf> <[🔎] CANVYNa-Nyq9Y1ayxDPBSnwwwA15O3Y1RCoV++_zh6WCT9gF+8Q@mail.gmail.com> <[🔎] 4F572957.70208@debian.org> <[🔎] 20120307214640.GA19737@virgil.dodds.net> <[🔎] 87obs78t4g.fsf@qurzaw.varnish-software.com> <[🔎] 87haxz7eaz.fsf@windlord.stanford.edu>

]] Russ Allbery 

> Tollef Fog Heen <tfheen@err.no> writes:
> > ]] Steve Langasek 
> 
> >> ssh is going to be the first problem in this regard, though I'm sure
> >> there will be others.  Has someone patched openssh to be cgroup-aware?
> 
> > This is most of what libpam-systemd does.  No need to patch sshd itself.
> 
> Er, "UsePAM no"?

That's «changing sshds configuration» which for most people is on a
completely different scale than patching the application itself.  UsePAM
yes is also the default nowadays.

> sshd has a bunch of non-PAM authentication mechanisms.  It is by no means
> guaranteed that everyone using sshd is using PAM.  Now, we can just say
> "that's broken, you're now required to use PAM," but this isn't a trivial
> change.  (Of course, as noted elsewhere, it may well be that systemd has
> some way of dealing with this already.)

You can use PAM sessions without using PAM auth, for instance if you're
using key authentication.

-- 
Tollef Fog Heen
UNIX is user friendly, it's just picky about who its friends are

Reply to:

Follow-Ups:
- Re: upstart: please update to latest upstream version
  - From: Russ Allbery <rra@debian.org>

References:
- Re: upstart: please update to latest upstream version
  - From: Wouter Verhelst <wouter@debian.org>
- Re: upstart: please update to latest upstream version
  - From: Josh Triplett <josh@joshtriplett.org>
- Re: upstart: please update to latest upstream version
  - From: Fernando Lemos <fernandotcl@gmail.com>
- Re: upstart: please update to latest upstream version
  - From: Michael Biebl <biebl@debian.org>
- Re: upstart: please update to latest upstream version
  - From: Steve Langasek <vorlon@debian.org>
- Re: upstart: please update to latest upstream version
  - From: Tollef Fog Heen <tfheen@err.no>
- Re: upstart: please update to latest upstream version
  - From: Russ Allbery <rra@debian.org>

Prev by Date: Re: upstart: please update to latest upstream version
Next by Date: Re: Bug#663017: ITP: transmission-remote-cli -- ncurses interface for the Transmission BitTorrent daemon
Previous by thread: Re: upstart: please update to latest upstream version
Next by thread: Re: upstart: please update to latest upstream version
Index(es):
- Date
- Thread