Date: Tue, 10 Mar 1998 19:35:48 -0500 From: Mark Mayo <mark@vmunix.com> To: Andrzej Bialecki <abial@nask.pl>, tcobb@staff.circle.net Cc: hackers@FreeBSD.ORG, msmith@FreeBSD.ORG Subject: Re: PAM? Message-ID: <19980310193548.10374@vmunix.com> In-Reply-To: <Pine.NEB.3.95.980310110202.28890F-100000@korin.warman.org.pl>; from Andrzej Bialecki on Tue, Mar 10, 1998 at 11:09:50AM %2B0100 References: <8188AD2EBC3CD111B7A30060082F32A40C3FA2@freya.circle.net> <Pine.NEB.3.95.980310110202.28890F-100000@korin.warman.org.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Mar 10, 1998 at 11:09:50AM +0100, Andrzej Bialecki wrote:
> On Tue, 10 Mar 1998 tcobb@staff.circle.net wrote:
>
> > There have been a few threads about a FreeBSD PAM implementation off and
> > on over the past 6 months. My understand was that someone had done an
> > initial hack of it. Who? Where? Does it work? :)
[SNIP]
> I for one could do something with it (or with something similar), because
> I all the time have to hack login and ftp to support SecurID tokens, and
> besides I'm going to try to hack a radius-ified login. But all of this is
> pretty hackish under current authentication scheme - there is no clean
> solution, and the same things are scattered in multiple places... :-/
>
> If you think there is some auth scheme/package that would be worth
> implementing, I might take a look at it.
Kerberos?
I've been using v4 here for ages, and it works swell. Haven't tried
v5 (actually don't even know if it's available under FreeBSD).
What do "SecurID tokens" give you that Kerberos doesn't?? Since NT is
going the way of Kerberos, I'm imagining that in a few years, Kerberos
style authentication will be all that really matters... :-)
-Mark
P.S. What are SecureID tokens?? :)
>
> Andrzej Bialecki
>
> ---------------------+---------------------------------------------------------
> abial@warman.org.pl | if(halt_per_mth > 0) { fetch("http://www.freebsd.org") }
> Research & Academic | "Be open-minded, but don't let your brains to fall out."
> Network in Poland | All of the above (and more) is just my personal opinion.
> ---------------------+---------------------------------------------------------
--
------------------------------------------------------------------------
Mark Mayo mark@vmunix.com
RingZero Comp. http://www.vmunix.com/mark
finger mark@vmunix.com for my PGP key and GCS code
------------------------------------------------------------------------
"The problem is how do you build tools that understand your programs
at a deeper semantic level." - James Gosling
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980310193548.10374>