Re: Exim Authentificación

To: <debian-user-spanish@lists.debian.org>
Subject: Re: Exim Authentificación
From: Victor Calzado Mayo <vcalzado@cnio.es>
Date: Wed, 16 Oct 2002 12:56:47 +0200
Message-id: <[🔎] 200210161256.47438.vcalzado@cnio.es>
In-reply-to: <[🔎] 001201c274f9$5dcd9cb0$0200a8c0@blepas>
References: <[🔎] OF4579AC64.683B8BF2-ONC1256C54.002DA076@retevision.es> <[🔎] 200210161008.13888.vcalzado@cnio.es> <[🔎] 001201c274f9$5dcd9cb0$0200a8c0@blepas>

Jaume
On Wednesday 16 October 2002 11:49, jaume wrote:
> Gracias por la documentación, pero no hay una manera de que pille los
> paswords de los usuarios del sistema? sin ldap,...
Aparentemente hay una forma más sencilla, perdón por la ida de pinza:

Sería compilar exim con soporte pam y...

pam {<string1>:<string2>:...}

Pluggable Authentication Modules (http://www.kernel.org/pub/linux/libs/pam/) 
are a facility which is available in the latest releases of Solaris and in 
some GNU/Linux distributions. The Exim support, which is intended for use in 
conjunction with the SMTP AUTH command, is available only if Exim is compiled 
with

SUPPORT_PAM=yes

in `Local/Makefile'. You probably need to add -lpam to EXTRALIBS, and in some 
releases of GNU/Linux -ldl is also needed.

The argument string is first expanded, and the result must be a 
colon-separated list of strings. The PAM module is initialized with the 
service name `exim' and the user name taken from the first item in the 
colon-separated data string (i.e. <string1>). The remaining items in the data 
string are passed over in response to requests from the authentication 
function. In the simple case there will only be one request, for a password, 
so the data will consist of just two strings.

There can be problems if any of the strings are permitted to contain colon 
characters. In the usual way, these have to be doubled to avoid being taken 
as separators. If the data is being inserted from a variable, the sg 
expansion item can be used to double any existing colons. For example, the 
configuration of a LOGIN authenticator might contain this setting:

server_condition = ${if pam{$1:${sg{$2}{:}{::}}}{yes}{no}}

y tomar una configuración tal que así

#SMTP AUTH conf
fixed_login:
  driver = plaintext
  public_name = LOGIN
  server_prompts = "User Name : Password"
  server_condition = "${if pam {$1:$2}{yes}{no}}"
  server_set_id = $1

/etc/pam.d/exim:

auth       required   pam_unix.so nullok
account    required   pam_unix.so
session    required   pam_unix.so

Perdón por complicarte la vida y un saludo
Victor

Reply to:

References:
- Re: [OT] GnuPG
  - From: jgarcian@retevision.es
- Re: Exim Authentificación
  - From: Victor Calzado Mayo <vcalzado@cnio.es>
- Re: Exim Authentificación
  - From: "jaume" <jaumellistes@calidae.net>

Prev by Date: Re: [gugs] Re: smtp y sylpheed
Next by Date: iptables
Previous by thread: Re: Exim Authentificación
Next by thread: Re: [OT] GnuPG
Index(es):
- Date
- Thread