[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: new pam_keylogin module


> Thorsten Kukuk wrote:
> > ftp://weber.uni-paderborn.de/pub/linux/NIS/pam_keylogin-0.99.tar.gz
> > 
> README says:
> > This module always returns PAM_SUCCESS, if it fails, the user has to do an
> > extra keylogin.
> Is it possible that PAM_IGNORE would be a better response?  The difference
> is only that no sys-admin will be able to configure their system to
> authenticate with this module then, which seems to be consistent with your
> intent.

Yes, that would be. I haven't seen the PAM_IGNORE define, I have take
pam_nologin as startpoint for this fast hack.

The other question, I change the UID and reset it. Is may solution
correct, could there be a security problem, or is there a better
solution ?

Thorsten Kukuk  kukuk@vt.uni-paderborn.de
Linux is like a Vorlon.  It is incredibly powerful, gives terse,
cryptic answers and has a lot of things going on in the background.

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []