pam_lastlog and cyrus imap
Tomas Mraz
tmraz at redhat.com
Mon Oct 3 07:03:30 UTC 2011
On Fri, 2011-09-30 at 16:12 -0300, D G Teed wrote:
> My cyrus uses saslauthd, which uses pam.
> Everything is working OK.
>
> Wanted to use lastlog to be able to prune out unused accounts.
>
> Have only this for session entry in /etc/pam.d/imap
>
> session required pam_lastlog.so silent
>
> I login over imap, and nothing new appears from last command.
>
> Am I doing this wrong, or does cyrus/saslauthd need
> something to support lastlog?
Most probably saslauthd does not call the PAM session management
functions. I did not look at the saslauthd code though. As saslauthd is
about authentication and authorization and not about managing user
sessions it seems pretty logical. I'd say that the session management
functions should be called directly by the application (IMAP) if at all.
--
Tomas Mraz
No matter how far down the wrong road you've gone, turn back.
Turkish proverb
More information about the Pam-list
mailing list