From owner-freebsd-users-jp@freebsd.org Thu Mar 29 15:31:13 2018 Return-Path: Delivered-To: freebsd-users-jp@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 38938F5491C for ; Thu, 29 Mar 2018 15:31:13 +0000 (UTC) (envelope-from maruyama@brahman.ism.ac.jp) Received: from brahman.ism.ac.jp (brahman.ism.ac.jp [133.58.120.104]) by mx1.freebsd.org (Postfix) with ESMTP id 99FA273D53 for ; Thu, 29 Mar 2018 15:31:12 +0000 (UTC) (envelope-from maruyama@brahman.ism.ac.jp) Received: from brahman.ism.ac.jp (localhost [127.0.0.1]) by brahman.ism.ac.jp (8.15.2/8.15.2) with ESMTPS id w2TFLHl1064924 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Fri, 30 Mar 2018 00:21:17 +0900 (JST) (envelope-from maruyama@brahman.ism.ac.jp) Received: (from maruyama@localhost) by brahman.ism.ac.jp (8.15.2/8.15.2/Submit) id w2TFLGZC064922; Fri, 30 Mar 2018 00:21:16 +0900 (JST) (envelope-from maruyama) X-Mailer: emacs 24.5.1 (via feedmail 11-beta-1 I) From: maruyama@ism.ac.jp (=?iso-2022-jp?B?GyRCNF07M0Q+PjsbKEI=?=) To: freebsd-users-jp@freebsd.org Organization: =?iso-2022-jp?B?GyRCRX03Vz90TX04JjVmPWobKEI=?= Reply-To: maruyama@ism.ac.jp Date: Fri, 30 Mar 2018 00:21:15 +0900 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset=iso-2022-jp Subject: [FreeBSD-users-jp 96195] /etc/pam.d/system X-BeenThere: freebsd-users-jp@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: Discussion relevant to FreeBSD communities in Japan List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Mar 2018 15:31:13 -0000 統計数理研究所の丸山です。 /etc/pam.d/system をいじると、どのあたりに影響が出るのでしょうか。 なぜこれをお尋ねするかというと、TrueOS(PC-BSD)の GUIログインマネージャー PCDM が pam の service 名として"system" を使っていて、 OTPを使い始めると /etc/pam.d/system をいじらない限り、GUIでのログインができなくなってしま うのです。ソースを確認すると、 https://github.com/trueos/pcdm/blob/master/src-qt5/PCDM/src/pcdm-xprocess.cpp の中で pam_start を呼んでいるところは 314行目あたりに if(xuser=="root"){ ret = pam_start("system", cUser, &pamc, &pamh); } else{ ret = pam_start("login", cUser, &pamc, &pamh); } となっています。私の素人考えではここの "system" は "xdm" に直したい気分 ですが、現状ソースからコンパイルしないでしのごうと思えば、 /etc/pam.d/system をいじらざるを得ないと思います。それをやった場合の副作 用を知っておきたいのでお尋ねする次第です。 -------- 丸山直昌@統計数理研究所 From owner-freebsd-users-jp@freebsd.org Fri Mar 30 10:17:47 2018 Return-Path: Delivered-To: freebsd-users-jp@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 2CBD1F57EA6 for ; Fri, 30 Mar 2018 10:17:47 +0000 (UTC) (envelope-from hiroo.ono@gmail.com) Received: from mail-wm0-x22c.google.com (mail-wm0-x22c.google.com [IPv6:2a00:1450:400c:c09::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id A4CD280F16 for ; Fri, 30 Mar 2018 10:17:46 +0000 (UTC) (envelope-from hiroo.ono@gmail.com) Received: by mail-wm0-x22c.google.com with SMTP id h76so15001714wme.4 for ; Fri, 30 Mar 2018 03:17:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:reply-to:sender:in-reply-to:references:from:date :message-id:subject:to:content-transfer-encoding; bh=24oSHRONGI15W/Fpb44oKnk2slRAYQPO/k/9G6dKVHM=; b=L9/aTdx0d8AjG6Rs/JZdAVxVcZhNjjeNmuFpbppK0J20G7h4ch5yo1EBA1+93bU5bE P1jlXwg+LwRHbuGbIHQRazF49grE1fEeFvnS7dcdDnBDreEEeCgxuT9gZNMpnHms6u/Z LYcRdohdGa70/VvyaKB3pHRTtOVose6FFhhVKAwtnQtZTZzhoMvP87xjmrFEHEvJ2IV8 DI0BVpG2Hgc8Y6f5OByt5YaAfspPhdsgQQWJ7NPEvGMvKeKvEqJNZ4LLlMHNYtcLjEn6 GhPvQE09uhhbUSjtyeOx+kGLGg7fUsYhdaklWCWuqOJ9f5zUN6nW1mmh/zD3vb4pzoMr H5xw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:reply-to:sender:in-reply-to :references:from:date:message-id:subject:to :content-transfer-encoding; bh=24oSHRONGI15W/Fpb44oKnk2slRAYQPO/k/9G6dKVHM=; b=P+D4iWI8dUowrBMrp7/xyr23nS7GkyDcU67kl+SRtq/k14kI+pRtfdmWiDJ+Ruqsjd IdCUH7FCwBxA5kpkkQN6MJUj2F5hbysQlBUtlJKyHFjR7uCgj9ssE/Eu8yylSmi5EfrB l31LW5M/doSxpY3M1jad4IJhL4b10w8plcI504ut8DdDy6qX3lFo7YqEc+dEAUAs1YiJ crDSn0A9OEaU5RisPRSVUrUpiMB/s4U4Val4nowaqoIbC8KXvgWwx/JplA1aJJszBGZV bIAEJwR9AEtjCM/UEUJnuB5B63+JUChPXKDPMJ+QN094kuSpSSMAdDms5n/FYXCser32 sh3g== X-Gm-Message-State: AElRT7HArgg1W1Nip3o2eP17YIwxVe9xB8AHzbzw0woHOHKvLd4GVDV/ V81lkfl9Gh7HcrQ7E6UUmMB7ocnWhZiF//tlPA4= X-Google-Smtp-Source: AIpwx4+fYwqU6qyAq37CP4J3DfR63ol7JwJvKqVMTFrpGbOQ9TJSBoDB4/8Pue31EwIiVAEmEDd0Q2EEUkddEUQ5KYY= X-Received: by 10.80.166.99 with SMTP id d90mr2369635edc.53.1522405064619; Fri, 30 Mar 2018 03:17:44 -0700 (PDT) MIME-Version: 1.0 Reply-To: hiroo.ono+freebsd@gmail.com Sender: hiroo.ono@gmail.com Received: by 10.80.243.140 with HTTP; Fri, 30 Mar 2018 03:17:43 -0700 (PDT) In-Reply-To: References: From: =?UTF-8?B?SGlyb28gT25vICjlsI/ph47lr5vnlJ8p?= Date: Fri, 30 Mar 2018 19:17:43 +0900 X-Google-Sender-Auth: 0Aj-PYRCfDjCQkrfmw7dZ570_sU Message-ID: To: freebsd-users-jp Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: base64 Subject: [FreeBSD-users-jp 96196] Re: /etc/pam.d/system X-BeenThere: freebsd-users-jp@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: Discussion relevant to FreeBSD communities in Japan List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 30 Mar 2018 10:17:47 -0000 5bCP6YeO5a+b55Sf44Gn44GZ44CCDQoNCjIwMTjlubQz5pyIMzDml6UgMDoyMSDkuLjlsbHnm7Tm mIwgPG1hcnV5YW1hQGlzbS5hYy5qcD46DQo+IOe1seioiOaVsOeQhueglOeptuaJgOOBruS4uOWx seOBp+OBmeOAgg0KPg0KPiAvZXRjL3BhbS5kL3N5c3RlbSDjgpLjgYTjgZjjgovjgajjgIHjganj ga7jgYLjgZ/jgorjgavlvbHpn7/jgYzlh7rjgovjga7jgafjgZfjgofjgYbjgYvjgIINCg0KL2V0 Yy9wYW0uZC8qIC91c3IvbG9jYWwvZXRjL3BhbS5kLyog44GnIGluY2x1ZGUgc3lzdGVtDQrjgZfj gabjgYTjgovjgoLjga7jgYzlvbHpn7/jgZXjgozjgovjgafjgZfjgofjgYbjgILjgajjgYTjgYbo qbHjgafjgYTjgYTjgpPjgafjgZfjgofjgYbjgYs/DQrkuIDnt5LjgasgT1RQIOOBp+OBruiqjeio vOOBq+OBquOBo+OBpuOBu+OBl+OBhOOCguOBruOBr+OBneOBruOBvuOBvuOBp+OCiOOBhOOBp+OB l+OCh+OBhuOBl+OAgeOBneOCjOOBp+OBr+WbsOOCi+OCguOBruOBr+S9leOBi+OBl+OCiee3qOmb huOBl+OBn+aWueOBjOOCiOOBhOOBp+OBl+OCh+OBhuOAgg0KDQpzdSDjgajjgYsgc3VkbyDjgafm r47lm54gT1RQIOOBo+OBpuOBruOBr+mdouWAkuOBj+OBleOBj+OBquOBhOOBi+OBquOBqOOBi+aA neOBhOOBvuOBmeOBjOOAgeOBneOCjOOCgiBPVFAg44Gn44GE44GE44KE44Go44GE44GG44GT44Go 44Gq44KJ5rCX44Gr44GX44Gq44GP44GmDQrjgojjgYTjgojjgYbjgavjgoLmgJ3jgYTjgb7jgZnj gIINCg0KPiDjgarjgZzjgZPjgozjgpLjgYrlsIvjga3jgZnjgovjgYvjgajjgYTjgYbjgajjgIFU cnVlT1MoUEMtQlNEKeOBriBHVUnjg63jgrDjgqTjg7Pjg57jg43jg7zjgrjjg6Pjg7wNCj4gUENE TSDjgYwgcGFtIOOBriBzZXJ2aWNlIOWQjeOBqOOBl+OBpiJzeXN0ZW0iIOOCkuS9v+OBo+OBpuOB hOOBpuOAgSBPVFDjgpLkvb/jgYTlp4vjgoHjgovjgagNCj4gL2V0Yy9wYW0uZC9zeXN0ZW0g44KS 44GE44GY44KJ44Gq44GE6ZmQ44KK44CBR1VJ44Gn44Gu44Ot44Kw44Kk44Oz44GM44Gn44GN44Gq 44GP44Gq44Gj44Gm44GX44G+DQo+IOOBhuOBruOBp+OBmeOAguOCveODvOOCueOCkueiuuiqjeOB meOCi+OBqOOAgQ0KPg0KPiBodHRwczovL2dpdGh1Yi5jb20vdHJ1ZW9zL3BjZG0vYmxvYi9tYXN0 ZXIvc3JjLXF0NS9QQ0RNL3NyYy9wY2RtLXhwcm9jZXNzLmNwcA0KPg0KPiDjga7kuK3jgacgcGFt X3N0YXJ0IOOCkuWRvOOCk+OBp+OBhOOCi+OBqOOBk+OCjeOBryAzMTTooYznm67jgYLjgZ/jgorj gasNCj4NCj4gICBpZih4dXNlcj09InJvb3QiKXsgcmV0ID0gcGFtX3N0YXJ0KCJzeXN0ZW0iLCBj VXNlciwgJnBhbWMsICZwYW1oKTsgfQ0KPiAgIGVsc2V7IHJldCA9IHBhbV9zdGFydCgibG9naW4i LCBjVXNlciwgJnBhbWMsICZwYW1oKTsgfQ0KPg0KPiDjgajjgarjgaPjgabjgYTjgb7jgZnjgILn p4Hjga7ntKDkurrogIPjgYjjgafjga/jgZPjgZPjga4gInN5c3RlbSIg44GvICJ4ZG0iIOOBq+eb tOOBl+OBn+OBhOawl+WIhg0KPiDjgafjgZnjgYzjgIHnj77nirbjgr3jg7zjgrnjgYvjgonjgrPj g7Pjg5HjgqTjg6vjgZfjgarjgYTjgafjgZfjga7jgZTjgYbjgajmgJ3jgYjjgbDjgIENCj4gL2V0 Yy9wYW0uZC9zeXN0ZW0g44KS44GE44GY44KJ44GW44KL44KS5b6X44Gq44GE44Go5oCd44GE44G+ 44GZ44CC44Gd44KM44KS44KE44Gj44Gf5aC05ZCI44Gu5Ymv5L2cDQo+IOeUqOOCkuefpeOBo+OB puOBiuOBjeOBn+OBhOOBruOBp+OBiuWwi+OBreOBmeOCi+asoeesrOOBp+OBmeOAgg0KPg0KPiAt LS0tLS0tLQ0KPiDkuLjlsbHnm7TmmIzvvKDntbHoqIjmlbDnkIbnoJTnqbbmiYANCj4gX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18NCj4gZnJlZWJzZC11c2Vy cy1qcEBmcmVlYnNkLm9yZyBtYWlsaW5nIGxpc3QNCj4gaHR0cHM6Ly9saXN0cy5mcmVlYnNkLm9y Zy9tYWlsbWFuL2xpc3RpbmZvL2ZyZWVic2QtdXNlcnMtanANCj4gVG8gdW5zdWJzY3JpYmUsIHNl bmQgYW55IG1haWwgdG8gImZyZWVic2QtdXNlcnMtanAtdW5zdWJzY3JpYmVAZnJlZWJzZC5vcmci DQo= From owner-freebsd-users-jp@freebsd.org Fri Mar 30 20:36:58 2018 Return-Path: Delivered-To: freebsd-users-jp@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id BE3DFF66E99 for ; Fri, 30 Mar 2018 20:36:58 +0000 (UTC) (envelope-from maruyama@brahman.ism.ac.jp) Received: from brahman.ism.ac.jp (brahman.ism.ac.jp [133.58.120.104]) by mx1.freebsd.org (Postfix) with ESMTP id 213427E9E5 for ; Fri, 30 Mar 2018 20:36:57 +0000 (UTC) (envelope-from maruyama@brahman.ism.ac.jp) Received: from brahman.ism.ac.jp (localhost [127.0.0.1]) by brahman.ism.ac.jp (8.15.2/8.15.2) with ESMTPS id w2UKanlq035729 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Sat, 31 Mar 2018 05:36:49 +0900 (JST) (envelope-from maruyama@brahman.ism.ac.jp) Received: (from maruyama@localhost) by brahman.ism.ac.jp (8.15.2/8.15.2/Submit) id w2UKam1K035728; Sat, 31 Mar 2018 05:36:48 +0900 (JST) (envelope-from maruyama) X-Mailer: emacs 24.5.1 (via feedmail 11-beta-1 I) From: maruyama@ism.ac.jp (=?iso-2022-jp?B?GyRCNF07M0Q+PjsbKEI=?=) To: freebsd-users-jp@freebsd.org In-Reply-To: (hiroo.ono+freebsd@gmail.com) Organization: =?iso-2022-jp?B?GyRCRX03Vz90TX04JjVmPWobKEI=?= Reply-To: maruyama@ism.ac.jp Date: Sat, 31 Mar 2018 05:36:46 +0900 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset=iso-2022-jp Subject: [FreeBSD-users-jp 96197] Re: /etc/pam.d/system X-BeenThere: freebsd-users-jp@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: Discussion relevant to FreeBSD communities in Japan List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 30 Mar 2018 20:36:58 -0000 丸山です。 Fri, 30 Mar 2018 19:17:43 +0900 Hiroo Ono (小野寛生) writes: >> /etc/pam.d/system をいじると、どのあたりに影響が出るのでしょうか。 > >/etc/pam.d/* /usr/local/etc/pam.d/* で include system >しているものが影響されるでしょう。という話でいいんでしょうか? たった2行ですが、PAMを全く理解していなかった私には、極めて重要な情報です。 有難うございました。 あちこちに include system があるということは、pcdm の以下のやり方は、根 本的に間違っている、という気がしてきました。 >> うのです。ソースを確認すると、 >> >> https://github.com/trueos/pcdm/blob/master/src-qt5/PCDM/src/pcdm-xprocess.cpp >> >> の中で pam_start を呼んでいるところは 314行目あたりに >> >> if(xuser=="root"){ ret = pam_start("system", cUser, &pamc, &pamh); } >> else{ ret = pam_start("login", cUser, &pamc, &pamh); } >> >> となっています。私の素人考えではここの "system" は "xdm" に直したい気分 >> ですが、現状ソースからコンパイルしないでしのごうと思えば、 >> /etc/pam.d/system をいじらざるを得ないと思います。それをやった場合の副作 >> 用を知っておきたいのでお尋ねする次第です。 -------- 丸山直昌@統計数理研究所