[fc6] pam update config

Michael A Peters mpeters at mac.com
Wed Jun 13 08:47:40 UTC 2007

Quick question -

Pam update created a new config file as rpmnew

[root at atlantis ~]# diff
-u /etc/pam.d/system-auth /etc/pam.d/system-auth.rpmnew 
--- /etc/pam.d/system-auth      2007-02-06 14:58:31.000000000 -0800
+++ /etc/pam.d/system-auth.rpmnew       2007-05-30 02:34:27.000000000
@@ -2,16 +2,13 @@
 # This file is auto-generated.
 # User changes will be destroyed the next time authconfig is run.
 auth        required      pam_env.so
-auth        sufficient    pam_unix.so nullok try_first_pass
-auth        requisite     pam_succeed_if.so uid >= 500 quiet
+auth        sufficient    pam_unix.so try_first_pass nullok
 auth        required      pam_deny.so
 account     required      pam_unix.so
-account     sufficient    pam_succeed_if.so uid < 500 quiet
-account     required      pam_permit.so
-password    requisite     pam_cracklib.so try_first_pass retry=3
-password    sufficient    pam_unix.so md5 shadow nullok try_first_pass
+password    required      pam_cracklib.so try_first_pass retry=3
+password    sufficient    pam_unix.so try_first_pass use_authtok nullok
md5 shadow
 password    required      pam_deny.so
 session     optional      pam_keyinit.so revoke

To my knowledge - I've not fuddled with that file.
Is there any reason anyone can think of not to cat the new file on top
of the old? I'm not a pam guru and I'm not sure I understand the changes
or if they are critical.

It's a laptop (thinkpad) used as an every day end user machine.

More information about the fedora-list mailing list