From owner-freebsd-hackers Tue Mar 10 16:24:40 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA07541 for freebsd-hackers-outgoing; Tue, 10 Mar 1998 16:24:40 -0800 (PST) (envelope-from owner-freebsd-hackers@FreeBSD.ORG) Received: from vnode.vmunix.com (vnode.vmunix.com [209.112.4.20]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA07514; Tue, 10 Mar 1998 16:24:27 -0800 (PST) (envelope-from mark@vnode.vmunix.com) Received: (from mark@localhost) by vnode.vmunix.com (8.8.8/8.8.8) id TAA06111; Tue, 10 Mar 1998 19:35:48 -0500 (EST) (envelope-from mark) Message-ID: <19980310193548.10374@vmunix.com> Date: Tue, 10 Mar 1998 19:35:48 -0500 From: Mark Mayo To: Andrzej Bialecki , tcobb@staff.circle.net Cc: hackers@FreeBSD.ORG, msmith@FreeBSD.ORG Subject: Re: PAM? References: <8188AD2EBC3CD111B7A30060082F32A40C3FA2@freya.circle.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89.1i In-Reply-To: ; from Andrzej Bialecki on Tue, Mar 10, 1998 at 11:09:50AM +0100 X-Operating-System: FreeBSD 2.2.5-STABLE i386 Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, Mar 10, 1998 at 11:09:50AM +0100, Andrzej Bialecki wrote: > On Tue, 10 Mar 1998 tcobb@staff.circle.net wrote: > > > There have been a few threads about a FreeBSD PAM implementation off and > > on over the past 6 months. My understand was that someone had done an > > initial hack of it. Who? Where? Does it work? :) [SNIP] > I for one could do something with it (or with something similar), because > I all the time have to hack login and ftp to support SecurID tokens, and > besides I'm going to try to hack a radius-ified login. But all of this is > pretty hackish under current authentication scheme - there is no clean > solution, and the same things are scattered in multiple places... :-/ > > If you think there is some auth scheme/package that would be worth > implementing, I might take a look at it. Kerberos? I've been using v4 here for ages, and it works swell. Haven't tried v5 (actually don't even know if it's available under FreeBSD). What do "SecurID tokens" give you that Kerberos doesn't?? Since NT is going the way of Kerberos, I'm imagining that in a few years, Kerberos style authentication will be all that really matters... :-) -Mark P.S. What are SecureID tokens?? :) > > Andrzej Bialecki > > ---------------------+--------------------------------------------------------- > abial@warman.org.pl | if(halt_per_mth > 0) { fetch("http://www.freebsd.org") } > Research & Academic | "Be open-minded, but don't let your brains to fall out." > Network in Poland | All of the above (and more) is just my personal opinion. > ---------------------+--------------------------------------------------------- -- ------------------------------------------------------------------------ Mark Mayo mark@vmunix.com RingZero Comp. http://www.vmunix.com/mark finger mark@vmunix.com for my PGP key and GCS code ------------------------------------------------------------------------ "The problem is how do you build tools that understand your programs at a deeper semantic level." - James Gosling To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message