Pam-list Digest, Vol 16, Issue 13
Andreas Schindler
schindler at az1.de
Sat Jun 25 11:35:46 UTC 2005
Fabrizio,
> 1) I want to find out if a specific pam-service is installed or not.
In my opinion, what yo're trying to do is contradictionary to the API
approach of PAM altogether. The authenticating client should know
nothing about the internals of the PAM module stack. Binding to some
special PAM module will make it impossible to the administrator to
change anything at later time.
> 2)I want to authenticate the user running the process. But unfortunately
Change from plain vanilla pam_unix to a more sophisticated module
(pam_unix2 or so?). What you need is a little SUID-root helper program
called from the pam_unix* module to deal with the shadow suite.
Regards, Andreas
--
Dr.-Ing. Andreas Schindler
Alpha Zero One Computersysteme GmbH
Frankfurter Str. 141
63303 Dreieich
Telefon 06103-57187-21
Telefax 06103-373245
schindler at az1.de
www.az1.de
More information about the Pam-list
mailing list