84d6cd8ea1
pam_krb5 is a Kerberos 5 (Heimdal) authentication module. pam_nologin checks for /etc/nologin and does the "usual stuff" if it is found, otherwise it silently succeeds. pam_rootok silently succeeds if the user is root, otherwise it fails. pam_wheel silently succeeds if the user is a member of group "wheel" (or another nominated group), and fails otherwise. There is an issue with kerberosIV and kerberos5 - if both are being built, then static linking fails with duplicate symbols. This will take a bit of work to sort out in the kerberii.
17 lines
463 B
Plaintext
17 lines
463 B
Plaintext
$FreeBSD$
|
|
|
|
Things for 1.1, in no particular order:
|
|
|
|
Check against Solaris 7, Solaris 8 beta. Check SEAM compatibility.
|
|
Check against Linux (Redhat, others?).
|
|
Check against HPUX.
|
|
Fix PAM flags checking.
|
|
Add more debugging for successful calls.
|
|
Move "entry" debugging up.
|
|
Check bounds on str* calls. [paranoia]
|
|
|
|
Get defaults from krb5.conf?
|
|
** Allow no-xrealm, this module typically used for local login **
|
|
** Add notes about runtime text relocation on Solaris **
|
|
|