mod_auth_pam patch
Bruno FLEISCH
bfle1c at freescale.com
Fri Apr 28 13:26:41 UTC 2006
Hello !
I've uploaded at
http://sourceforge.net/tracker/index.php?func=detail&aid=1478302&group_id=6663&atid=306663
a small patch for the Apache authentication module (mod_auth_pam).
This patch introduces these following new features:
* The name of the service used by the PAM library may be set by the
Apache directive AuthPAM_ServiceName. (The default service name is
"httpd"). This might be useful if you need different authentications
modules for specific virtual hosts, directories, ...
* The module caches both positive (i.e.: successful) and negative
authentication results. This improves performances on slow
authentication providers (NIS/YP or LDAP), and limit deny-of-service
attacks with bad credentials.
NB: The cache routines may be disabled by "undef-ing" the ENABLE_CACHE
macro in source file.
Feel free to reach me for any comment / remarks,
Thanks!
Best regards,
Bruno
--
More information about the Pam-list
mailing list