Commit Graph

20 Commits

Author SHA1 Message Date
markm
d1bc5a5045 Remove (commented out) use of pam_ssh where it won't work. 2001-10-01 17:05:32 +00:00
markm
6aa19e79d5 Tidy, reorder and adjust to more correctly reflect FreeBSD default
policy.
2001-08-26 18:15:32 +00:00
markm
93fede9c0e Add no_warn option to the "auth" lines. Minor tidy-up as well. 2001-08-15 20:12:27 +00:00
markm
712c05e310 Add OPIE examples.
Tidy up columns.

Fix pam_wheel options.
2001-07-14 08:46:56 +00:00
markm
1f97b343bd Extend the su(1) example to take into account recent options to give
a more BSD flavour.
2001-06-04 19:52:36 +00:00
markm
5651273104 Improve and extend. Use new modules to set policy, and provide another
example for WHEELSU-type su(1).
2001-05-26 09:56:17 +00:00
nsayer
ce2648b0d2 Add PAM support to SRA authentication. Cribbed mostly from ftpd. This
doesn't solve the problem of root being allowed to log in, but that sort
of thing is something PAM should be doing anyway.
2001-05-07 20:38:39 +00:00
green
f48416a46d Label the OpenSSH section, then add a small explanation for the existence
of the non-typo "csshd" service.

Prodded by:	markm
Reviewed by:	markm, dwhite, rwatson
2001-04-06 05:52:53 +00:00
green
18f4df571f Attempt to support TIS auth by default in the SSHD by providing a
"csshd" requirement of the S/KEY PAM module.
2001-03-30 00:11:33 +00:00
markm
f767ca7e60 Add full PAM support for account management and sessions.
The PAM_FAIL_CHECK and PAM_END macros in su.c came from the util-linux
package's PAM patches to the BSD login.c

Submitted by:	"David J. MacKenzie" <djm@web.us.uu.net>
2001-03-27 19:40:51 +00:00
rwatson
a18e9522d7 o Reinstate Kerberos IV support for sshd when MAKE_KERBEROS4 is
compiled in.  This involves a commented out sshd line to match the
  remainder of the commented out pam_kerberosIV.so entries.  This
  doesn't quite restore the correct behavior, as ticket files are
  not managed properly, but it's an improvement.

Forgotten by: green
2001-02-03 02:09:20 +00:00
green
41efee08a3 Update for OpenSSH 2.3.0. 2000-12-05 03:01:33 +00:00
ru
1324e3deb9 Removed broken PAM support from rshd(8) and rlogind(8). rshd does
not allocate a pty(4) so it is not suitable at all for interactive
PAM modules.  rlogind calls login(1) which is already PAM enabled.

Approved by:	markm
2000-10-12 07:18:20 +00:00
ru
7a331accac The final entry should be required', not sufficient'. 2000-09-21 07:47:36 +00:00
shin
58306df166 Add ftpd entries into /etc/pam.conf.
S/Key authentication for ftpd was not working due to ftp implementation and
  /etc/pam.conf missmatch.
  So add ftpd entries into /etc/pam.conf.

Reported by: "Jose M. Alcaide" <jose@we.lc.ehu.es>
Approved by: jkh

Reviewed by: markm
2000-02-12 20:22:20 +00:00
phantom
67b117eb9d Add items for pop3 and imap
PR:		conf/14714
Submitted by:	Ronald F. Guilmette <rfg@monkeys.com>
2000-01-10 14:08:30 +00:00
markm
d4444ae911 Add a whole bunch of example entries for pam. This should help get
folk over various hurdles.
2000-01-04 06:08:58 +00:00
mharo
a91e0d2474 make previous commit's format match rest of file 1999-12-21 08:39:26 +00:00
mharo
7016bce72f add default service (other) entries
Reviewed by:	markm (in concept)
1999-12-21 08:36:10 +00:00
jdp
2dd2b091a9 Add a sample "/etc/pam.conf" file that configures the authentication
methods used by login.  Changes to "/usr/bin/login" to use it will
be committed later today.  The format of the file is described in
pam(8).

This sample file makes login behave in the traditional way.  To
wit, it enables authentication via S/Key and passwd/NIS lookups.
KerberosIV authentication is present in the sample file but commented
out.

As a safety net and a transition aid, login will fall back on
built-in passwd/NIS authentication if this configuration file is
missing or if some other fatal PAM error occurs.

This file will eventually replace "/etc/auth.conf", but not until
I've finished converting the other utilities, such as passwd and su.
1998-11-20 23:20:01 +00:00