Subject: Re: Pluggable authentication - PAM/BSD Auth
To: None <current-users@netbsd.org>
From: Peter Seebach <seebs@plethora.net>
List: current-users
Date: 11/10/2000 15:23:34
In message <200011102112.eAALCAK17751@saruman.ics.muni.cz>, Jarom r Dolecek wri
tes:
>This is nice feature, though the programs which do authentication
>typically need suid anyway, since need to be able to switch any user context
>(login, su, etc).
The main system ones do; others may not.
>> BTW, almost all of the code for it is available for use in *BSD; the only
>> thing we haven't opened up is the specific login_passwd, etc., programs.
>> I believe that at least one of login or su is available, for instance.
>Where is it possible to download this ?
It's on the source CD; I've sent out tarballs of the relevant stuff before,
and if you want one, let me know and I'll see if I can send you a current
copy.
>> It wouldn't hurt to have support for the PAM API, but I think the BSD
>> Authentication API is a lot cleaner. I'm not entirely sure that PAM will
>> "win" in the end in FreeBSD, as the engineering groups start talking to
>> each other. I certainly hope we can deprecate it, at the very least.
>Where is the documentation available ?
There's a man page in section 3 on a BSD/OS box. ;-) It's in the tarball.
If you want a copy, let me know; so far as I know, the "open" parts of BSD/OS
aren't being "published" yet, they're just floating on the CD.
-s