From owner-freebsd-arch  Fri May 25  5:40:38 2001
Delivered-To: freebsd-arch@freebsd.org
Received: from gratis.grondar.za (grouter.grondar.za [196.7.18.65])
	by hub.freebsd.org (Postfix) with ESMTP id B834C37B422
	for <arch@freebsd.org>; Fri, 25 May 2001 05:40:31 -0700 (PDT)
	(envelope-from mark@grondar.za)
Received: from grondar.za (gratis.grondar.za [196.7.18.133])
	by gratis.grondar.za (8.11.3/8.11.3) with ESMTP id f4PCeO612402
	for <arch@freebsd.org>; Fri, 25 May 2001 14:40:27 +0200 (SAST)
	(envelope-from mark@grondar.za)
Message-Id: <200105251240.f4PCeO612402@gratis.grondar.za>
To: arch@freebsd.org
Subject: PAM, S/Key and authentication schemes.
Date: Fri, 25 May 2001 14:42:40 +0200
From: Mark Murray <mark@grondar.za>
Sender: owner-freebsd-arch@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-arch.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-arch>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-arch>
X-Loop: FreeBSD.ORG

Hi

We currently have a slew of authentication schemes in FreeBSD. There
is the usual lot in getpwent(3) and friends, OPIE, S/Key and PAM, and
then a bunch of home-rolled ones such as the WHEELSU rules in su(1),
and the anonymous user rules in ftpd(8). There is also kerberos in
2 forms, SSH, and the r-utils .rhosts files.

I'd like to simplify this lot in a way that makes it easy for the
administrator to decide her own policy.

PAM is ideal for this.

I have already tested this on my home cluster with su(1) (I just
made su a PAM-only thing), and this makes the code a whole lot
simpler. Simpler code == safer code.

I'd like to properly PAM-ize the things that need it, and simplify
where possible and where appropriate. In most cases, this means
gutting out the convoluted logic if favour of pam _only_. (Obviously
SSH will need its own scheme as well).

This means that PAM modules like pam_rhosts, pam_anonymous, pam_shells
pam_tcpd and so on can be used to set custom policies on a per-site
basis (Yeah, yeah, these need to be written!).

S/Key is OBE in my opinion and needs to be entirely replaced by OPIE.
(And in the majority of cases pam_opie will do the job).

Comments?

M
-- 
Mark Murray
Warning: this .sig is umop ap!sdn

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message