[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Question about 'conditional pam schema'



dplist@free.fr wrote:
On Wed, 21 Aug 2002 11:47:21 +0300
Tanel Kokk <tanel.kokk@eyp.ee> wrote:

- authenticating from special machine is done ONLY by module pam_myself- authenticating from any other machines is done ONLY by module pam_unix


Maybe you should modify your pam_myself module to make it check whether the remote host is your special machine and fail if false. You could add a parameter to your module to pass the special machine's address, that could be helpful if you change it someday. Hoping this is true ...


Yes. We already did it. But another problem occured: uw-imap (imap-200x...) doesn't return to pam the variable PAM_RHOST. For example telnetd does, but imapd doesn't (aarghh). Solution? Replace the imap daemon or...?


Tanel





[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []