mod_auth_pam patch
Bruno FLEISCH
bfle1c at freescale.com
Tue May 2 07:55:28 UTC 2006
Ignacio Vazquez-Abrams wrote:
> On Fri, 2006-04-28 at 15:26 +0200, Bruno FLEISCH wrote:
>
>> * The module caches both positive (i.e.: successful) and negative
>> authentication results. This improves performances on slow
>> authentication providers (NIS/YP or LDAP), and limit deny-of-service
>> attacks with bad credentials.
>>
>> NB: The cache routines may be disabled by "undef-ing" the ENABLE_CACHE
>> macro in source file.
>>
>
> How do you flush the cache at runtime?
>
There is no "flush" operation available. Cached entries expire after a
given amount of time (default is 120 seconds for positive results, 5 for
negative).
Regards,
Bruno
More information about the Pam-list
mailing list