Date: Sat, 29 Nov 2003 14:01:02 +0100 From: Matthias Andree <ma@dt.e-technik.uni-dortmund.de> To: "Jacques A. Vidrine" <nectar@FreeBSD.org> Cc: Matthias Andree <ma@dt.e-technik.uni-dortmund.de> Subject: Re: NSS and PAM, dynamic vs. static Message-ID: <m3vfp31g8h.fsf@merlin.emma.line.org> In-Reply-To: <20031126130402.GB57523@madman.celabo.org> (Jacques A. Vidrine's message of "Wed, 26 Nov 2003 07:04:02 -0600") References: <20031125025621.453732A8FC@canning.wemm.org> <200311250311.hAP3BTCO075916@apollo.backplane.com> <20031125150700.GA48007@madman.celabo.org> <20031125201421.GB54467@madman.celabo.org> <200311252039.hAPKdBfq080963@apollo.backplane.com> <m37k1ox7tz.fsf_-_@merlin.emma.line.org> <20031126130402.GB57523@madman.celabo.org>
next in thread | previous in thread | raw e-mail | index | archive | help
"Jacques A. Vidrine" <nectar@FreeBSD.org> writes: > On Wed, Nov 26, 2003 at 02:00:08AM +0100, Matthias Andree wrote: >> Matthew Dillon <dillon@apollo.backplane.com> writes: >> >> > How much do you intend to use NSS for? I mean, what's the point of >> > adopting this cool infrastructure if all you are going to do with it >> > is make a better PAM out of it? >> >> The important thing is that NSS allows to plug modules such as LDAP or >> PostgreSQL for user base management. PAM is only halfway there and >> doesn't give libc et al. a notion of a user or group context (in spite >> of its "account" context), NSS does. One might discuss if PAM is really >> needed with NSS in place, but it's hard to think of a system without >> NSS and removing PAM now doesn't look right. > > NSS and PAM do not overlap. I wonder how PAM gets "system" authentication information for pam_pwdb or pam_unix or how it's called today and on the pertinent system if not through NSS. Reimplementation of these "passwd/shadow/whatever" mechanisms? -- Matthias Andree Encrypt your mail: my GnuPG key ID is 0x052E7D95
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?m3vfp31g8h.fsf>