[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: setting PAM_AUTHTOK from an application



On Wed, 19 Feb 1997, Andrew G. Morgan wrote:

> I'm inclined to feel that this is a good idea. It's more of a debugging
> thing really, but I guess it could be seen as a security feature.

I agree, with the corresponding _pam_log(LOG_ERROR,...) if the item is
found to be set by the application directly.

Furthemore, I think it will be good to have PAM system force the apps
follow the specs - for example having some functions supposed to be run
only by the modules available only to modules... Not clear to me how to do
it, but it could be done.

Regards,
		Cristian Gafton
--
--------------------------------------------------------------------
Cristian Gafton                                    gafton@sorosis.ro
Computers & Communications Center              Network Administrator
http://www.sorosis.ro/~gafton                          Iasi, Romania
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
UNIX is user friendly. It's just selective about who its friends are.



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []