From owner-freebsd-current@FreeBSD.ORG Thu Jun 9 18:21:02 2005 Return-Path: X-Original-To: freebsd-current@FreeBSD.org Delivered-To: freebsd-current@FreeBSD.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9707916A41C for ; Thu, 9 Jun 2005 18:21:02 +0000 (GMT) (envelope-from chris@haakonia.hitnet.rwth-aachen.de) Received: from ms-dienst.rz.rwth-aachen.de (ms-2.rz.RWTH-Aachen.DE [134.130.3.131]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2BF2D43D49 for ; Thu, 9 Jun 2005 18:21:02 +0000 (GMT) (envelope-from chris@haakonia.hitnet.rwth-aachen.de) Received: from r220-1 (r220-1.rz.RWTH-Aachen.DE [134.130.3.31]) by ms-dienst.rz.rwth-aachen.de (iPlanet Messaging Server 5.2 Patch 2 (built Jul 14 2004)) with ESMTP id <0IHT00L8AXN03T@ms-dienst.rz.rwth-aachen.de> for freebsd-current@FreeBSD.org; Thu, 09 Jun 2005 20:21:01 +0200 (MEST) Received: from relay.rwth-aachen.de ([134.130.3.1]) by r220-1 (MailMonitor for SMTP v1.2.2 ) ; Thu, 09 Jun 2005 20:21:00 +0200 (MEST) Received: from haakonia.hitnet.rwth-aachen.de (haakonia.hitnet.RWTH-Aachen.DE [137.226.181.92]) by relay.rwth-aachen.de (8.13.3/8.13.3/1) with ESMTP id j59IKxiU007144; Thu, 09 Jun 2005 20:20:59 +0200 (MEST) Received: by haakonia.hitnet.rwth-aachen.de (Postfix, from userid 1001) id CC36028439; Thu, 09 Jun 2005 20:20:58 +0200 (CEST) Date: Thu, 09 Jun 2005 20:20:58 +0200 From: Christian Brueffer In-reply-to: <867jh3zcfk.fsf@xps.des.no> To: Dag-Erling =?iso-8859-1?Q?Sm=F8rgrav?= Message-id: <20050609182058.GC2620@unixpages.org> MIME-version: 1.0 Content-type: multipart/signed; boundary=ADZbWkCsHQ7r3kzd; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-disposition: inline User-Agent: Mutt/1.5.6i X-Operating-System: FreeBSD 5.4-STABLE X-PGP-Key: http://people.FreeBSD.org/~brueffer/brueffer.key.asc X-PGP-Fingerprint: A5C8 2099 19FF AACA F41B B29B 6C76 178C A0ED 982D References: <20050608084229.GH41050@obiwan.tataz.chchile.org> <20050608152417.GB836@galgenberg.net> <20050609141756.GA41050@obiwan.tataz.chchile.org> <20050609145520.GB2620@unixpages.org> <867jh3zcfk.fsf@xps.des.no> Cc: freebsd-current@FreeBSD.org, Jeremie Le Hen Subject: Re: pam.conf(5) and pam(8) X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Jun 2005 18:21:02 -0000 --ADZbWkCsHQ7r3kzd Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Jun 09, 2005 at 07:07:27PM +0200, Dag-Erling Sm=F8rgrav wrote: > Christian Brueffer writes: > > NetBSD has both pam.conf(5) and pam(8) that fit with OpenPAM FreeBSD > > uses (NetBSD recently imported OpenPAM as well). I'll import these > > in the next couple of days. >=20 > Allow me to raise a few objections. >=20 > First, the reason why we don't have a pam(8) is that we have a rather > comprehensive article about PAM in the doc tree, and I couldn't make > up my mind about how much of it to include in pam(8) and how much to > leave out. My feeling now is that pam(8) should probably just > reference the article and provide a quick overview of our PAM modules > (with references to their individual man pages). >=20 That's what the NetBSD manpage mostly does. Short description of the functionality and the account, auth, password and session facilities. > The reason why we don't have a pam.conf(5) is slightly more complex. > Part of it is that the information that belongs there is already > present in different places in different forms (/etc/pam.d/README for > instance). Another part is that it is *hard* to describe the meanings > of the control flags both accurately and succintly. NetBSD didn't get > it quite right. In addition, their man page is under a four-clause > BSD license, which makes me leery of including it in OpenPAM. >=20 Ok. The 'already documented' argument is valid, but I think a manpage is much more accessible and visible than e.g. the README (actually I never even noticed it's there).=20 > My own attempt is in Perforce: >=20 > http://perforce.freebsd.org/fileViewer.cgi?FSPC=3D//depot/projects/openpa= m/doc/man/pam.conf.5&REV=3D2 >=20 Looks good. No idea on what we agree on, but the pam(8) and pam.conf(5) Xrefs that lead to nowhere have to be fixed in some way before 6.0-RELEASE. - Chris --=20 Christian Brueffer chris@unixpages.org brueffer@FreeBSD.org GPG Key: http://people.freebsd.org/~brueffer/brueffer.key.asc GPG Fingerprint: A5C8 2099 19FF AACA F41B B29B 6C76 178C A0ED 982D --ADZbWkCsHQ7r3kzd Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQFCqIiKbHYXjKDtmC0RAnMCAJwL94CdEYfrQEoStPaFAynTvzUo2gCgsDQ4 8R8BMHK2zrOFQyCUBagloyk= =dE1+ -----END PGP SIGNATURE----- --ADZbWkCsHQ7r3kzd--