[sudo-workers] ldap and password
Todd C. Miller
Todd.Miller at courtesan.com
Mon Aug 23 14:40:37 EDT 2004
Speaking of PAM, I think it is time to update the sample.pam file
that comes with sudo. Can someone with PAM experience comment on
the following wrt. accuracy and sanity?
- todd
#%PAM-1.0
# Sample /etc/pam.d/sudo file for Linux
# There are two basic ways to configure PAM, either via pam_stack
# or by explicitly specifying the various methods to use.
#
# Here we use pam_stack
auth required pam_stack.so service=system-auth
account required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth
session required pam_stack.so service=system-auth
#
# Alternately, you can specify the authentication method directly.
# Here we use pam_unix for normal password authentication.
#auth required /lib/security/pam_env.so
#account required /lib/security/pam_unix.so
#password required /lib/security/pam_unix.so nullok use_authtok md5 shadow
#session required /lib/security/pam_limits.so
#session required /lib/security/pam_unix.so
#
# Another option is to use SMB for authentication.
#auth required /lib/security/pam_env.so
#account required /lib/security/pam_smb_auth.so
#password required /lib/security/pam_smb_auth.so
#session required /lib/security/pam_limits.so
More information about the sudo-workers
mailing list