[Fedora-directory-users] Securing the Pam Passthru plugin
Richard Megginson
rmeggins at redhat.com
Thu May 25 14:43:54 UTC 2006
Paul Engle wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>
> - --On Thursday, May 25, 2006 08:34:08 AM -0600 Richard Megginson
> <rmeggins at redhat.com> wrote:
>
>
>
>>> pamFallback: FALSE
>>> pamSecure: TRUE
>>>
>>>
>> Looks like these two fields are not expecting a boolean value, rather an
>> integer value. So, use 1 instead of TRUE and 0 instead of FALSE.
>>
>
> Excellent! That works like a charm. I think we're about ready to go
> production with this baby.
>
Please let us know how it works, what problems there are, enhancement
requests. This will help us to determine if it should be enabled by
default (or at least built/packaged).
BTW, I fixed the problem you reported - if you grab the latest version
of ldapserver/ldap/servers/plugins/pam_passthru/pam_ptconfig.c from CVS
you will be able to use boolean values (e.g. true, yes, on) instead of
just 0 and 1.
> Thanks!
> -paul
>
> - --
> Paul D. Engle | Rice University
> Sr. Systems Administrator | Information Technology - MS119
> (713) 348-4702 | P.O. Box 1892
> pengle at rice.edu | Houston, TX 77251-1892
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.6 (GNU/Linux)
>
> iD8DBQFEdcGHCpkISWtyHNsRAnzgAKD5EAfTvOVkvoAEWxkrqwss51m8MQCg6iR1
> J1wJK7GboYJlkSaDOUoQ58M=
> =Ezcn
> -----END PGP SIGNATURE-----
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3178 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20060525/c43b75b4/attachment.bin>
More information about the Fedora-directory-users
mailing list