From owner-freebsd-current Sun Feb 16 13:48:53 2003 Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AFB4537B405 for ; Sun, 16 Feb 2003 13:48:51 -0800 (PST) Received: from storm.FreeBSD.org.uk (storm.FreeBSD.org.uk [194.242.157.42]) by mx1.FreeBSD.org (Postfix) with ESMTP id 72C2543F3F for ; Sun, 16 Feb 2003 13:48:50 -0800 (PST) (envelope-from mark@grondar.org) Received: from storm.FreeBSD.org.uk (Ugrondar@localhost [127.0.0.1]) by storm.FreeBSD.org.uk (8.12.6/8.12.6) with ESMTP id h1GLmmja083449 for ; Sun, 16 Feb 2003 21:48:48 GMT (envelope-from mark@grondar.org) Received: (from Ugrondar@localhost) by storm.FreeBSD.org.uk (8.12.6/8.12.6/Submit) with UUCP id h1GLmm8F083448 for current@FreeBSD.ORG; Sun, 16 Feb 2003 21:48:48 GMT X-Authentication-Warning: storm.FreeBSD.org.uk: Ugrondar set sender to mark@grondar.org using -f Received: from grondar.org (localhost [127.0.0.1]) by grimreaper.grondar.org (8.12.6/8.12.6) with ESMTP id h1GLfeaX035772 for ; Sun, 16 Feb 2003 23:41:40 +0200 (SAST) (envelope-from mark@grondar.org) From: Mark Murray Message-Id: <200302162141.h1GLfeaX035772@grimreaper.grondar.org> To: current@FreeBSD.ORG Subject: Re: OPIE breakage: backout & patch for review In-Reply-To: Your message of "Sun, 16 Feb 2003 13:28:35 PST." <20030216212835.GA74550@dragon.nuxi.com> Date: Sun, 16 Feb 2003 21:41:40 +0000 Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG "David O'Brien" writes: > On Sun, Feb 16, 2003 at 07:11:49PM +0000, Mark Murray wrote: > > In the case where an application is OPIEised and not PAMised, we > > need to figure out something; PAMizing such apps is not terribly > > hard. If any of them are in the base system, then this situation > > is a bug in its own right. If they are ports, they need to fall in > > with FreeBSD/sysadmin policy. > > I'll state it again, because many don't seem to listen -- many of us > consider OPIEized, but not PAMized 3rd party ports a Good Thing. PAM is > nothing but a PITA, OPIE offers useful real functionality. David, This is not a failure to understand; it is a disagreement. I am asserting that PAM is the way FreeBSD is doing its authentication policy-setting. I am asserting that as a result of this applications need to comply, somehow. Right now, this is not hard. In future, it may get harder. DES has committed some PAM policy tweaks that make this possible. Bear in mind that PAM may leave you behind at some point; it is in the focus. M -- Mark Murray iumop ap!sdn w,I idlaH To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message