From owner-freebsd-hackers Mon Oct 20 21:20:43 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id VAA17020 for hackers-outgoing; Mon, 20 Oct 1997 21:20:43 -0700 (PDT) (envelope-from owner-freebsd-hackers) Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id VAA17015 for ; Mon, 20 Oct 1997 21:20:39 -0700 (PDT) (envelope-from julian@whistle.com) Received: (from daemon@localhost) by alpo.whistle.com (8.8.5/8.8.5) id VAA26456; Mon, 20 Oct 1997 21:19:01 -0700 (PDT) Received: from current1.whistle.com(207.76.205.22) via SMTP by alpo.whistle.com, id smtpd026454; Tue Oct 21 04:18:59 1997 Date: Mon, 20 Oct 1997 21:17:32 -0700 (PDT) From: Julian Elischer To: Terry Lambert cc: "David E. Cross" , freebsd-hackers@FreeBSD.ORG Subject: Re: FreeBSD authentication... In-Reply-To: <199710201827.LAA09252@usr05.primenet.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-hackers@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Mon, 20 Oct 1997, Terry Lambert wrote: > > Is there any interest (should there be) to mooving to Pluggabl > > Authentication Modules. (Since they are implimented as shared libraries, > > that you link in as needed, would we need to rewrite ld.so a bit to ensure > > that people couldn't set their LD_LIBRARY_PATH, and then run su to get > > full root acces, sans password?) > > Have you located a PAM implementation (not necessarily modules, but the > framework itself) which is under UCB copyright instead of GPL? > The MIT PAM which Linux uses is under a dual BSD/GNU copyright. > User authentication is a system critical function, like the kernel; > it's unlikely that PAM would be any more acceptable than a GPL'ed > driver if it's critical to system operation. > > > Terry Lambert > terry@lambert.org > --- > Any opinions in this posting are my own and not those of my present > or previous employers. >