Date: Tue, 15 Dec 1998 11:45:48 -0500 (EST) From: John Fieber <jfieber@indiana.edu> To: Robert Watson <robert+freebsd@cyrus.watson.org> Cc: Frank Tobin <ftobin@bigfoot.com>, FreeBSD-security Mailing List <freebsd-security@FreeBSD.ORG>, jdp@FreeBSD.ORG Subject: Re: Limiting which users can login via xdm Message-ID: <Pine.BSF.4.05.9812151139020.44016-100000@fallout.campusview.indiana.edu> In-Reply-To: <Pine.BSF.3.96.981215105331.19184B-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 15 Dec 1998, Robert Watson wrote: > Presumably a login.conf module could be assembled that verified the user > fell within the various bounds listed for their class in /etc/login.conf. The login(1) program currently does this to some degree. While the authentication has been PAMified, it looks to me like a lot more needs to be moved out into PAM account and session modules. The simplest would be to stick it all in pam_unix, or it could be broken down into finer grained modules. Does anyone already have plans for this? Thin it should be easy to hook xdm into this. I would assume that the Linux crowd already have some XDM patches kicking around for PAM.... -john To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.05.9812151139020.44016-100000>