Date: Sat, 8 Feb 2014 11:50:01 GMT From: Lukas Slebodnik <lukas.slebodnik@intrak.sk> To: freebsd-ports-bugs@FreeBSD.org Subject: Re: ports/186545: [PATCH] security/sssd: add ignore_unknown_user option to pam_sss Message-ID: <201402081150.s18Bo10q040043@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR ports/186545; it has been noted by GNATS. From: Lukas Slebodnik <lukas.slebodnik@intrak.sk> To: bug-followup@FreeBSD.org Cc: Subject: Re: ports/186545: [PATCH] security/sssd: add ignore_unknown_user option to pam_sss Date: Sat, 8 Feb 2014 12:39:09 +0100 On Fri, Feb 07, 2014 at 06:00:08PM +0000, Edwin Groothuis wrote: > Maintainer of security/sssd, > > Please note that PR ports/186545 has just been submitted. > > If it contains a patch for an upgrade, an enhancement or a bug fix > you agree on, reply to this email stating that you approve the patch > and a committer will take care of it. > > The full text of the PR can be found at: > http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/186545 > You are right. It is not possible to obtain the same behaviour like on linux. Openpam does not recognise following syntax. account [default=bad success=ok user_unknown=ignore] pam_sss.so This is the same problem like another PR http://www.freebsd.org/cgi/query-pr.cgi?pr=184464. I communicated with reporter privately and I have a prepared patch. It will be part of work on including openpam into sssd, because sssd is heavily patched on FreeBSD. BTW your patch solves the main issue, but there are another corner cases you did not identified. Thank you very much for report. I will wait until accepting solution by upstream. LS
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201402081150.s18Bo10q040043>