confused about "sufficient" vs. "required"
Christian Seberino
seberino at spawar.navy.mil
Fri Feb 3 01:45:45 UTC 2006
Here is what you asked for.....
http://www.tldp.org/HOWTO/User-Authentication-HOWTO/x115.html#AEN153
Under "control" section discussing "sufficient".....
"If authentication by this module is successful, PAM will grant
authentication, even if a previous required module failed."
Chris
On Tue, 2006-01-31 at 09:50 +0100, Tomas Mraz wrote:
> On Mon, 2006-01-30 at 15:18 -0800, Christian Seberino wrote:
> > I'm confused about "sufficient" because docs
> > suggest it can override a failed "required" test!
> Nope, sufficient can't override failed required module if the sufficient
> module is called after the required module. Could you please specify
> where the documentation states otherwise so it can be fixed?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 481 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/pam-list/attachments/20060202/45a45e66/attachment.sig>
More information about the Pam-list
mailing list