24aeeab445
pam_lastlog, so add a dummy session chain to avoid using the one from pam.d/other. I assume gdm does something similar, so give it a dummy session chain as well. Sponsored by: DARPA, NAI Labs.
27 lines
607 B
Plaintext
27 lines
607 B
Plaintext
#
|
|
# $FreeBSD$
|
|
#
|
|
# PAM configuration for the "gdm" service
|
|
#
|
|
|
|
# auth
|
|
auth required pam_nologin.so no_warn
|
|
#auth sufficient pam_kerberosIV.so no_warn try_first_pass
|
|
#auth sufficient pam_krb5.so no_warn try_first_pass
|
|
#auth sufficient pam_ssh.so no_warn try_first_pass
|
|
auth required pam_unix.so no_warn try_first_pass
|
|
|
|
# account
|
|
#account required pam_kerberosIV.so
|
|
#account required pam_krb5.so
|
|
account required pam_unix.so
|
|
|
|
# session
|
|
#session required pam_kerberosIV.so
|
|
#session required pam_krb5.so
|
|
#session required pam_ssh.so
|
|
session required pam_permit.so
|
|
|
|
# password
|
|
password required pam_deny.so
|